3HiPeR's Stars
wagiro/BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
1N3/IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
PortSwigger/turbo-intruder
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
topjohnwu/Magisk
The Magic Mask for Android
mgeeky/decode-spam-headers
A script that helps you understand why your E-Mail ended up in Spam
byt3bl33d3r/CrackMapExec
A swiss army knife for pentesting networks
stong/how-to-exploit-a-double-free
How to exploit a double free vulnerability in 2021. Use After Free for Dummies
mantvydasb/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
S3cur3Th1sSh1t/OffensiveVBA
This repo covers some code execution and AV Evasion methods for Macros in Office documents
techgaun/github-dorks
Find leaked secrets via github search
bats3c/ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
manulqwerty/Evil-WinRAR-Gen
Generator of malicious Ace files for WinRAR < 5.70 beta 1
AlteredSecurity/CVE-2021-38647
CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD
RUB-NDS/PRET
Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
ptswarm/reFlutter
Flutter Reverse Engineering Framework
Loganinit/python-zaid
Ethical hacking python scripts developed based on the course Python & Ethical Hacking From Scratch by Zaid Sabih
mgeeky/ShellcodeFluctuation
An advanced in-memory evasion technique fluctuating shellcode's memory protection between RW/NoAccess & RX and then encrypting/decrypting its contents
mgeeky/cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
X-C3LL/xlsxPoison
Just a PoC to turn xlsx (regular Excel files) into xlsm (Excel file with macro) and slipping inside a macro (vbaProject.bin)
connormcgarr/LittleCorporal
LittleCorporal: A C# Automated Maldoc Generator
Sysinternals/ProcDump-for-Linux
A Linux version of the ProcDump Sysinternals tool
lgandx/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
jrmdev/mitm_relay
Hackish way to intercept and modify non-HTTP protocols through Burp & others.
Arno0x/DNSExfiltrator
Data exfiltration over DNS request covert channel
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
EnableSecurity/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
mhaskar/DNSStager
Hide your payload in DNS
outflanknl/PrintNightmare