SpiderLabs

Earth

Pinned Repositories

DoHC2
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).
Language:C#443 37 395
HostHunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Language:Python1.1k 46 4179
malware-analysis
A repository of tools and scripts related to malware analysis
Language:Ruby240 54 175
MCIR
The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.
Language:PHP437 46 5156
owasp-modsecurity-crs
OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
Language:Perl2.4k 239 966725
portia
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.
Language:PowerShell505 42 9145
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Language:Python4.4k 277 1081.6k
scavenger
scavenger : is a multi-threaded post-exploitation scanning tool for scavenging systems, finding most frequently used files and folders as well as "interesting" files containing sensitive information.
Language:Python329 28 446
SharpCompile
SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approach than manually compiling an .NET assembly and loading it into Cobalt Strike. The project aims to make it easier to move away from adhoc PowerShell execution instead creating a temporary assembly and executing using beacon's 'execute-assembly' in seconds.
Language:C#290 22 058
snappy
Language:Python250 9 119

SpiderLabs's Repositories

SpiderLabs/HostHunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Language:Python1.1k 46 4179
SpiderLabs/portia
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.
Language:PowerShell505 42 9145
SpiderLabs/DoHC2
DoHC2 allows the ExternalC2 library from Ryan Hanson (https://github.com/ryhanson/ExternalC2) to be leveraged for command and control (C2) via DNS over HTTPS (DoH).
Language:C#443 37 395
SpiderLabs/MCIR
The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.
Language:PHP437 46 5156
SpiderLabs/SharpCompile
SharpCompile is an aggressor script for Cobalt Strike which allows you to compile and execute C# in realtime. This is a more slick approach than manually compiling an .NET assembly and loading it into Cobalt Strike. The project aims to make it easier to move away from adhoc PowerShell execution instead creating a temporary assembly and executing using beacon's 'execute-assembly' in seconds.
Language:C#290 22 058
SpiderLabs/snappy
Language:Python250 9 119
SpiderLabs/Nmap-Tools
SpiderLabs shared Nmap Tools
Language:Lua229 28 181
SpiderLabs/cribdrag
cribdrag - an interactive crib dragging tool for cryptanalysis on ciphertext generated with reused or predictable stream cipher keys
Language:Python172 17 173
SpiderLabs/jboss-autopwn
A JBoss script for obtaining remote shell access
Language:Shell171 13 062
SpiderLabs/Airachnid-Burp-Extension
A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
Language:Java138 17 241
SpiderLabs/cve_server
Simple REST-style web service for the CVE searching
Language:Ruby97 21 1938
SpiderLabs/msfrpc
Perl/Python modules for interfacing with Metasploit MSGRPC
Language:Python95 13 362
SpiderLabs/IOCs-IDPS
This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
94 27 027
SpiderLabs/BurpNotesExtension
Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created during penetration testing.
Language:Java65 17 227
SpiderLabs/BlackByteDecryptor
Language:C#57 9 422
SpiderLabs/groupenum
Language:Python55 15 117
SpiderLabs/ModSecurity-log-utilities
Set of CLI tools to transform ModSecurity logs into a meaningful information, given a context.
Language:Python52 15 423
SpiderLabs/Firework
Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.
Language:Python45 15 010
SpiderLabs/OWASP-CRS-Documentation
Documentation for the OWASP CRS project
Language:Python40 11 219
SpiderLabs/microphisher
µphisher spear phishing tool (reference implementation)
Language:Ruby39 18 015
SpiderLabs/deblaze
Performs method enumeration and interrogation against flash remoting end points.
Language:Python37 8 022
SpiderLabs/pingback
Language:Python26 6 16
SpiderLabs/modsec-sdbm-util
Utility to manipulate SDBM files used by ModSecurity. With that utility it is possible to _shrink_ SDBM databases. It is also possible to list the SDBM contents with filters such as: expired or invalid items only.
Language:C22 19 617
SpiderLabs/advisories-poc
Language:C18 12 216
SpiderLabs/masher
multiple password 'asher using Python’s hashlib
Language:Python16 7 05
SpiderLabs/OWASP-CRS-regressions
Regression tests for OWASP CRS v3
Language:Python16 9 814
SpiderLabs/Jorogumo
Red Team Stored XSS SVG phishing-companion tool with the ability to serve a malicious login page, or clone an html page and implement custom javascript. It then generates a relevant SVG.
Language:Python10 2 04
SpiderLabs/REvil_config
Configuration file for REvil / Kaseya July campaign
4 6 01
SpiderLabs/zpminternational
40
SpiderLabs/Grandoreiro-decryptor
Grandoreiro decryptor and DGA generator (26.May.2022)
Language:Python1 6 02