Pinned Repositories
AJPy
AJPy aims to craft AJP requests in order to communicate with AJP connectors. Reference documentation: https://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html
AxSuite
AxSuite is a toolset aimed to retrieve in-memory secrets saved by AxCrypt 1.0
inyourface
InYourFace is a software used to patch unencrypted and unsigned JSF ViewStates.
jimmix
JimmX provides a good way to interact with the JMXInvokerServlet and EJBInvokerServlet servlets exposed by JBoss servers <= 6.x (versions 4.x and 5.x are currently supported).
kerberom
Kerberom is a tool aimed to retrieve ARC4-HMAC'ed encrypted Tickets Granting Service (TGS) of accounts having a Service Principal Name (SPN) within an Active Directory. Works on Linux and Windows and support Windows implicit authentication
lightspeed
PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
Modmobjam
A smart jamming proof of concept for mobile equipments that could be powered with Modmobmap tool
Modmobmap
Map 2G/3G/4G and more cellular networks in real live with a simple smart phone, pretty much like osmocomBB monitoring feature.
rdp2tcp
rdp2tcp is a tunneling tool on top of remote desktop protocol (RDP). It uses RDP virtual channel capabilities to multiplex several ports forwarding over an already established rdesktop session.
stuffz
Repository containing many useful scripts
Synacktiv-contrib's Repositories
Synacktiv-contrib/Modmobmap
Map 2G/3G/4G and more cellular networks in real live with a simple smart phone, pretty much like osmocomBB monitoring feature.
Synacktiv-contrib/Modmobjam
A smart jamming proof of concept for mobile equipments that could be powered with Modmobmap tool
Synacktiv-contrib/lightspeed
PoC for the iOS 11.4.1 and MacOS 10.13 kernel vulnerability in lio_listio
Synacktiv-contrib/stuffz
Repository containing many useful scripts
Synacktiv-contrib/CVE-2018-4193
exploit for CVE-2018-4193
Synacktiv-contrib/kernelcache-laundering
load iOS12 kernelcaches and PAC code in IDA
Synacktiv-contrib/rdp2tcp
rdp2tcp is a tunneling tool on top of remote desktop protocol (RDP). It uses RDP virtual channel capabilities to multiplex several ports forwarding over an already established rdesktop session.
Synacktiv-contrib/pcileech_hpilo4_service
PCILeech HP iLO4 Service
Synacktiv-contrib/inyourface
InYourFace is a software used to patch unencrypted and unsigned JSF ViewStates.
Synacktiv-contrib/AJPy
AJPy aims to craft AJP requests in order to communicate with AJP connectors. Reference documentation: https://tomcat.apache.org/connectors-doc/ajp/ajpv13a.html
Synacktiv-contrib/exploiting-cve-2017-5123
Source code and configuration files related to our article in MISC96
Synacktiv-contrib/kerberom
Kerberom is a tool aimed to retrieve ARC4-HMAC'ed encrypted Tickets Granting Service (TGS) of accounts having a Service Principal Name (SPN) within an Active Directory. Works on Linux and Windows and support Windows implicit authentication
Synacktiv-contrib/nmap-scrap
nmap-scrap is an HTTP exploration utility based on Nmap XML outputs. This tool aims to address discovering issues when dealing with large scopes by parsing Nmap XML outputs and extracting only required information.
Synacktiv-contrib/pcileech
Direct Memory Access (DMA) Attack Software
Synacktiv-contrib/grehack
Synacktiv-contrib/AxSuite
AxSuite is a toolset aimed to retrieve in-memory secrets saved by AxCrypt 1.0
Synacktiv-contrib/jimmix
JimmX provides a good way to interact with the JMXInvokerServlet and EJBInvokerServlet servlets exposed by JBoss servers <= 6.x (versions 4.x and 5.x are currently supported).
Synacktiv-contrib/metasploit-framework
Metasploit Framework