Pinned Repositories
AIB_online_banking
Security theatre at Allied Irish Banks: a demonstration in python
Cartero
Cartero - Social Engineering Framework
commix
Automated All-in-One OS Command Injection and Exploitation Tool
Digitalbank
Android Digital Bank Vulnerable Mobile App
enumXFF
Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
node-reverse-trojan
An example of a reverse RAT (remote administration tool / trojan horse) written in NodeJS. Highly experimental.
Pronto
Quick OSINT on twitter accounts.
scripts
Scripts I use during pentest engagements.
the-backdoor-factory
Patch PE, ELF, Mach-O binaries with shellcode
tw2inky
Maps recent tweets to linkedin profiles (OSINT)
CyberScions's Repositories
CyberScions/Digitalbank
Android Digital Bank Vulnerable Mobile App
CyberScions/node-reverse-trojan
An example of a reverse RAT (remote administration tool / trojan horse) written in NodeJS. Highly experimental.
CyberScions/scripts
Scripts I use during pentest engagements.
CyberScions/caparser
A quick and dirty PCAP parser that helps you identify who your applications are sending sensitive data to without encryption.
CyberScions/cheat-sheets
Various Cheat Sheets related to development and security
CyberScions/CrackMapExec
A swiss army knife for pentesting Windows/Active Directory environments
CyberScions/gavel
Maltego Transforms to Query Traffic Records
CyberScions/Geotweet_GUI
Social engineering tool for human hacking
CyberScions/H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
CyberScions/infernal-twin
wireless hacking - This is evil twin attack automated
CyberScions/intrigue-core
Intelligence gathering framework
CyberScions/katoolin
Automatically install all Kali linux tools
CyberScions/Loot
Sensitive information extraction tool.
CyberScions/MITMf
Framework for Man-In-The-Middle attacks
CyberScions/NetRipper
NetRipper - Smart traffic sniffing for penetration testers
CyberScions/OSCARf-public
Python tool to aid in the collection of OSINT data
CyberScions/osint-4
Query IP and domains against VirusTotal and public blocklists
CyberScions/OWASP-ZSC
OWASP ZCR Shellcoder
CyberScions/pasv-agrsv
Passive recon / OSINT automation script
CyberScions/phishing-tools
Tools for use with phishing frenzy
CyberScions/ranger
An attack and penetration tool that automates the identification of viable targets on an internal network using native protocols. The tool can then be used to extract cleartext credentials from the memory of vulnerable systems.
CyberScions/Sn1per
Automated Pentest Recon Scanner
CyberScions/snifflab
Scripts to create your own MITM'ing, packet sniffing WiFi access point
CyberScions/snuck
Automatic XSS filter bypass
CyberScions/sonar.js
A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration combined with WebSockets and external resource fingerprinting.
CyberScions/SubDomain-Analyzer
Subdomain Analyzer
CyberScions/wpsploit
WPSploit - Exploiting Wordpress With Metasploit
CyberScions/XSSPosed-releases
XSSPosed-releases is tool that extracts latest XSS vulnerabilities published
CyberScions/XSSTracer
A small exploit/poc/script to check for Cross-Site Tracing (XST)
CyberScions/XXEinjector
Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.