blkmba's Stars
gchq/CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
Lissy93/web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
BishopFox/sliver
Adversary Emulation Framework
rebootuser/LinEnum
Scripted Local Linux Enumeration & Privilege Escalation Checks
0x4D31/awesome-oscp
A curated list of awesome OSCP resources
FabioBaroni/awesome-exploit-development
A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development
nettitude/PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
whid-injector/WHID
WiFi HID Injector - An USB Rubberducky / BadUSB On Steroids.
SpecterOps/at-ps
Adversary Tactics - PowerShell Training
pentestmonkey/windows-privesc-check
Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems
felixgr/secure-ios-app-dev
Collection of the most common vulnerabilities found in iOS applications
DeimosC2/DeimosC2
DeimosC2 is a Golang command and control framework for post-exploitation.
h4r5h1t/webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
Sentinel-One/CobaltStrikeParser
killswitch-GUI/CobaltStrike-ToolKit
Some useful scripts for CobaltStrike
Sh3lldon/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.
nettitude/PoshC2_Old
Powershell C2 Server and Implants
ivan-sincek/wifi-penetration-testing-cheat-sheet
Work in progress...
malcomvetter/Periscope
Fully Integrated Adversarial Operations Toolkit (C2, stagers, agents, ephemeral infrastructure, phishing engine, and automation)
paranoidninja/Brute-Ratel-C4-Community-Kit
This repository contains scripts, configurations and deprecated payload loaders for Brute Ratel C4 (https://bruteratel.com/)
whid-injector/whid-31337
WHID Elite is a GSM-enabled Open-Source Multi-Purpose Offensive Device that allows a threat actor to remotely inject keystrokes, bypass air-gapped systems, conduct mousejacking attacks, do acoustic surveillance, RF replay attacks and much more. In practice, is THE Wet Dream of any Security Consultant out there!
checkymander/iMessagesBackdoor
A script to help set up an event handler in order to install a persistent backdoor that can be activated by sending a message.
gnebbia/hydra_notes
Some notes about Hydra for bruteforcing
akamai/DDSpoof
DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
Z4kSec/IoctlHunter
IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.
XenocodeRCE/dnSpyDetector
A quick way to check for the presence of dnSpy hooks in memory
FabioBaroni/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
MAX-P0W3R/OSCP-Guide
This is an UNOFFICIAL guide and general list of cheatsheets, references, and walkthroughs aligned with the OffSec OSCP exam process
insideClaw/oscp-tools
The scripts I've developed in my time in the OSCP labs and during the exam. For some third-party scripts I have used as a main part of my arsenal, I have redacted the code but included a link to the original.
kj0317/new-kali-oscp-tools
Simple script to install AutoRecon, pip3, and other tools on a newly spun up OSCP Kali image.