BHaFSec
We are an information security company based in Ann Arbor, Michigan. We specialize in Pentesting, Vuln Assessment, and AppSec Consulting.
BHaFSec, LLC.Ann Arbor, Michigan
Pinned Repositories
AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
blog
Using github as our blog platform.
BloodHound
Six Degrees of Domain Admin
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
Goohak
Automatically Launch Google Hacking Queries Against A Target Domain
heap-backend
This is Project HEAP's back-end repository
heap-frontend
This is Project HEAP's front-end repository
intellifuzz-xss
An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match
IntruderPayloads
A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
Sn1per
Automated Pentest Recon Scanner
BHaFSec's Repositories
BHaFSec/heap-backend
This is Project HEAP's back-end repository
BHaFSec/heap-frontend
This is Project HEAP's front-end repository
BHaFSec/Goohak
Automatically Launch Google Hacking Queries Against A Target Domain
BHaFSec/blog
Using github as our blog platform.
BHaFSec/BloodHound
Six Degrees of Domain Admin
BHaFSec/Sn1per
Automated Pentest Recon Scanner
BHaFSec/AWSBucketDump
Security Tool to Look For Interesting Files in S3 Buckets
BHaFSec/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
BHaFSec/IntruderPayloads
A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
BHaFSec/live-build-config
My custom kali live build configuration
BHaFSec/scrape
a command-line web scraping tool
BHaFSec/SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
BHaFSec/Security-Research
Exploits written by the Rhino Security Labs team
BHaFSec/Serpico
SimplE RePort wrIting and COllaboration tool
BHaFSec/bitcoin
Bitcoin Core integration/staging tree
BHaFSec/domain
Setup script for Regon-ng
BHaFSec/dork-cli
Command-line Google dork tool.
BHaFSec/EQGRP
Decrypted content of eqgrp-auction-file.tar.xz
BHaFSec/exploits
Miscellaneous exploit code
BHaFSec/fiche
Command line pastebin for sharing terminal output.
BHaFSec/intrigue-core
Discover your attack surface!
BHaFSec/misc_python
Miscellaneous collection of various python utility scripts.
BHaFSec/nrsc-5
A software implementation of HD Radio (NRSC-5-C)
BHaFSec/PowerShell-Suite
My musings with PowerShell
BHaFSec/RottenPotato
RottenPotato local privilege escalation from service account to SYSTEM
BHaFSec/ssh-mitm
SSH man-in-the-middle tool
BHaFSec/sshuttle
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
BHaFSec/steamer
For importing, searching, and managing public password breach data
BHaFSec/struts-pwn
An exploit for Apache Struts CVE-2017-5638
BHaFSec/TA-Shell
Splunk scripted input for opening a backconnect shell on a remote forwarder