dzflack

dzflack's Stars

• tailscale/tailscale

  The easiest, most secure way to use WireGuard and 2FA.

  Language:Go19.7k1627.4k1.5k

• facebook/infer

  A static analyzer for Java, C, C++, and Objective-C

  Language:OCaml15k6021.4k2k

• dominikh/go-tools

  Staticcheck - The advanced Go linter

  Language:Go6.2k791.4k377

• Netflix/consoleme

  A Central Control Plane for AWS Permissions and Access

  Language:Python3.1k244105253

• lgandx/PCredz

  This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

  Language:Python2k10332402

• dafthack/DomainPasswordSpray

  DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!

  Language:PowerShell1.8k4914377

• d3mondev/puredns

  Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

  Language:Go1.7k2546160

• nccgroup/PMapper

  A tool for quickly evaluating IAM permissions in AWS.

  Language:Python1.4k28107171

• nccgroup/SocksOverRDP

  Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop

  Language:C++1.1k2415169

• itm4n/PPLdump

  Dump the memory of a PPL with a userland exploit

  Language:C847209137

• ChiChou/grapefruit

  (WIP) Runtime Application Instruments for iOS. Previously Passionfruit

  Language:TypeScript818223375

• rvrsh3ll/FindFrontableDomains

  Search for potential frontable domains

  Language:Python616256107

• deepinstinct/LsassSilentProcessExit

  Command line interface to dump LSASS memory to disk via SilentProcessExit

  Language:C++4428360

• meme/hellscape

  GIMPLE obfuscator for C, C++, Go, ... all supported GCC targets and front-ends that use GIMPLE.

  Language:C++392151234

• earthquake/XFLTReaT

  XFLTReaT tunnelling framework

  Language:Python32630770

• RedSiege/EDD

  Enumerate Domain Data

  Language:C#3169559

• V-E-O/rdp2tcp

  rdp2tcp: open tcp tunnel through remote desktop connection.

  Language:C31416597

• improsec/ImproHound

  Identify the attack paths in BloodHound breaking your AD tiering

  Language:C#3106335

• KCarretto/paragon

  Red Team engagement platform with the goal of unifying offensive tools behind a simple UI

  Language:Go2942411042

• mgeeky/SharpWebServer

  Red Team oriented C# Simple HTTP & WebDAV Server with Net-NTLM hashes capture functionality

  Language:C#28211144

• meme/apple-tools

  A collection of tools for working with Apple software/hardware

  Language:C27211529

• earthquake/UniversalDVC

  Universal Dynamic Virtual Channel connector for Remote Desktop Services

  Language:C++24915854

• xforcered/CredBandit

  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel

  Language:C2323026

• CyborgSecurity/PoisonApple

  macOS persistence tool

  Language:Python2219134

• chvancooten/OSCP-MarkdownReportingTemplates

  Markdown reporting templates and Pandoc styling references to generate sleek reports for OSCP/PWK with little effort.

  19910040

• BishopFox/pwn-pulse

  Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

  Language:Shell13715160

• Flangvik/RosFuscator

  YouTube/Livestream project for obfuscating C# source code using Roslyn

  Language:C#1243129

• cloudflare/slirpnetstack

  slirp4netns implementation using gvisor/netstack

  Language:Go115121313

• vivami/OutlookParasite

  Outlook persistence using VSTO add-ins

  Language:PowerShell838020

• praetorian-inc/Matryoshka

  Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.

  Language:C383012