e1abrador
Open-source tool maker. Penetration tester. Bug bounty hunter.
Innotec Security (Accenture)../
Pinned Repositories
autoRPC
Tool to automate Windows RPC enumeration.
bashgf
Bash version from Tomnomnom's gf tool.
Burp-Encode-IP
Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
Burp-headerSnipper
Burp extension used to snip any header from all the requests.
Burp-IP-Tracker
Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.
Crackmapexec-custom-modules
Crackmapexec custom scripts used in my internal pentests.
fuzzuli
fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
SpringCorePoC.sh
PoC in bash for new Spring Core Vulnerability. Also the script for nuclei in .yaml
sub.Monitor
Self-hosted passive subdomain continous monitoring tool.
web.Monitor
Fast & user-friendly web change tracking tool.
e1abrador's Repositories
e1abrador/hoaxshell
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
e1abrador/EvilnoVNC
Ready to go Phishing Platform
e1abrador/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
e1abrador/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
e1abrador/PEzor
Open-Source Shellcode & PE Packer
e1abrador/Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
e1abrador/PowerSharpPack
e1abrador/RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
e1abrador/dastardly-github-action
Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.
e1abrador/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
e1abrador/Inveigh
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
e1abrador/mubeng
An incredibly fast proxy checker & IP rotator with ease.
e1abrador/AORT
All in One Recon Tool for Bug Bounty
e1abrador/joanbono
e1abrador/CRLFsuite
The most powerful CRLF injection (HTTP Response Splitting) scanner.
e1abrador/commix
Automated All-in-One OS Command Injection Exploitation Tool.
e1abrador/tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
e1abrador/scan4all
Vulnerabilities Scan;15000+PoC漏洞扫描;20种应用密码爆破;7000+Web指纹;146种协议90000+规则Port扫描;Fuzz、HW打点、BugBounty神器...
e1abrador/VulnerableSAMLApp
Vulnerable SAML infrastructure training applicaiton
e1abrador/bashgf
Bash version from Tomnomnom's gf tool.
e1abrador/BeVigil-OSINT-CLI
bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.
e1abrador/authz0
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
e1abrador/xss_vulnerability_challenges
this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.
e1abrador/domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
e1abrador/king-phisher
Phishing Campaign Toolkit
e1abrador/tornado
Anonymously Reverse Shell over Tor Network using Hidden services without Portforwarding.
e1abrador/hakoriginfinder
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
e1abrador/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
e1abrador/xsscrapy
XSS spider - 66/66 wavsep XSS detected
e1abrador/SpringCorePoC.sh
PoC in bash for new Spring Core Vulnerability. Also the script for nuclei in .yaml