0xTomTom

0xTomTom's Stars

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python60.3k1.8k014.5k

• icsharpcode/ILSpy

  .NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!

  Language:C#21.3k7122.4k3.3k

• twintproject/twint

  An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.

  Language:Python15.7k3281.2k2.7k

• OWASP/owasp-mastg

  The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

  Language:Python11.6k4221.1k2.3k

• EmpireProject/Empire

  Empire is a PowerShell and Python post-exploitation agent.

  Language:PowerShell7.4k4887812.8k

• guardicore/monkey

  Infection Monkey - An open-source adversary emulation platform

  Language:Python6.6k2411.5k775

• nomi-sec/PoC-in-GitHub

  📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

  6.4k427281.2k

• epi052/feroxbuster

  A fast, simple, recursive content discovery tool written in Rust.

  Language:Rust5.8k52287491

• Orange-Cyberdefense/GOAD

  game of active directory

  Language:PowerShell5.1k78187713

• danielbohannon/Invoke-Obfuscation

  PowerShell Obfuscator

  Language:PowerShell3.7k13853763

• arkadiyt/bounty-targets-data

  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

  3.1k2350580

• byt3bl33d3r/OffensiveNim

  My experiments in weaponizing Nim (https://nim-lang.org/)

  Language:Nim2.8k6929351

• es3n1n/no-defender

  A slightly more fun way to disable windows defender + firewall. (through the WSC api)

  1.9k19711

• hakluke/hakrevdns

  Small, fast tool for performing reverse DNS lookups en masse.

  Language:Go1.4k199156

• 0xsp-SRD/mortar

  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

  Language:Pascal1.4k2924223

• s0md3v/Corsy

  CORS Misconfiguration Scanner

  Language:Python1.3k3122175

• blacklanternsecurity/TREVORspray

  TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

  Language:Python1k1728146

• ptoomey3/evilarc

  Create tar/zip archives that can exploit directory traversal vulnerabilities

  Language:Python969150180

• n0fate/chainbreaker

  Mac OS X Keychain Forensic Tool

  Language:Python8193726157

• honoki/bbrf-client

  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

  Language:Python610259990

• ukncsc/SME

  437106329

• Pepelux/sippts

  Set of tools to audit SIP based VoIP Systems

  Language:Python429162983

• briskets/CVE-2021-3493

  Ubuntu OverlayFS Local Privesc

  Language:C40441136

• FSecureLABS/Ninjasploit

  A meterpreter extension for applying hooks to avoid windows defender memory scans

  Language:C23812240

• praetorian-inc/vulcan

  a tool to make it easy and fast to test various forms of injection

  Language:C++17213040

• MythicAgents/Nimplant

  A cross-platform implant written in Nim

  Language:Nim16812623

• minvws/nl-kat-coordination

  Repo nl-kat-coordination for minvws

  Language:Python123221.8k55

• minvws/nl-covid19-notification-app-ios

  Language:Swift120203636

• santosomar/virtualseccons

  An ongoing list of virtual cybersecurity conferences.

  115261515

• minvws/nl-covid19-notification-lab-ios

  iOS app for experiments with GAEN and Bluetooth protocols

  Language:Swift41704