butlerallenj's Stars
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
evilsocket/pwnagotchi
(⌐■_■) - Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.
Hackplayers/evil-winrm
The ultimate WinRM shell for hacking/pentesting
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
huntergregal/mimipenguin
A tool to dump the login password from the current linux user
TheWover/donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
cobrateam/splinter
splinter - python test framework for web applications
matterpreter/DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
api0cradle/UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
dirkjanm/mitm6
pwning IPv4 via IPv6
WithSecureLabs/C3
Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.
SpecterOps/at-ps
Adversary Tactics - PowerShell Training
harleyQu1nn/AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
ustayready/CredSniper
CredSniper is a phishing framework written with the Python micro-framework Flask and Jinja2 templating which supports capturing 2FA tokens.
pahaz/sshtunnel
SSH tunnels to remote server.
anshumanbh/git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
buffer/thug
Python low-interaction honeyclient
s0md3v/Diggy
Extract endpoints from apk files.
geerlingguy/ansible-role-certbot
Ansible Role - Certbot (for Let's Encrypt)
dcsync/pycobalt
Cobalt Strike Python API
Static-Flow/BurpSuite-Team-Extension
This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes through your Burpsuite instance will be replicated in the history of the other testers and vice-versa!
highmeh/lure
Lure - User Recon Automation for GoPhish
namecheap/terraform-provider-namecheap
Terraform provider for Namecheap
bau-sec/ansible-openvpn-hardened
An Ansible playbook to create a hardened OpenVPN server instance
taylorthurlow/panda-motd
a utility for generating a more useful MOTD
wiliamsouza/python-systemd
python-systemd python wrapper for systemd system and session manager dbus interfaces
simplefin/bank-access
A collection of scripts for retrieving bank transaction information from particular banks.
Static-Flow/BurpSuiteTeamServer
This is the Go Server that relays all HTTP requests and responses between clients.