felajan

felajan's Stars

• RustScan/RustScan

  🤖 The Modern Port Scanner 🤖

  Language:Rust14.5k978

• mandiant/flare-floss

  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.

  Language:Python3.2k450

• gquere/pwn_jenkins

  Notes about attacking Jenkins servers

  Language:Python2k322

• volatilityfoundation/volatility3

  Volatility 3.0 development

  Language:Python2.6k451

• webfp/tor-browser-selenium

  Tor Browser automation with Selenium.

  Language:Python55099

• MunGell/awesome-for-beginners

  A list of awesome beginners-friendly projects.

  68.7k7k

• mozilla/geckodriver

  WebDriver for Firefox

  7.2k1.5k

• pentestmonkey/windows-privesc-check

  Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems

  Language:Python1.5k322

• fingerprintjs/fingerprintjs

  The most advanced browser fingerprinting library.

  Language:TypeScript23k2.3k

• Askannz/msi-perkeyrgb

  Linux CLI tool to control per-key RGB lighting on MSI laptops.

  Language:Python21439

• jhaddix/tbhm

  The Bug Hunters Methodology

  3.9k795

• kgretzky/evilginx2

  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

  Language:Go10.8k1.9k

• rebootuser/LinEnum

  Scripted Local Linux Enumeration & Privilege Escalation Checks

  Language:Shell7k2k

• LOLBAS-Project/LOLBAS

  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

  Language:XSLT7k987

• GTFOBins/GTFOBins.github.io

  GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

  Language:HTML10.8k1.3k

• libfuse/sshfs

  A network filesystem client to connect to SSH servers

  Language:C6k494

• OJ/gobuster

  Directory/File, DNS and VHost busting tool written in Go

  Language:Go10k1.2k

• tennc/webshell

  This is a webshell open source project

  Language:PHP10.1k5.6k

• epinna/tplmap

  Server-Side Template Injection and Code Injection Detection and Exploitation Tool

  Language:Python3.8k671

• frohoff/ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  Language:Java7.7k1.8k

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python61k14.6k

• foospidy/payloads

  Git All the Payloads! A collection of web attack payloads.

  Language:Shell3.6k965

• RetireJS/retire.js

  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

  Language:JavaScript3.7k414

• RhinoSecurityLabs/Security-Research

  Exploits written by the Rhino Security Labs team

  Language:Python1.1k294

• HatBashBR/HatCloud

  discontinued

  Language:Ruby516176

• hashcat/hashcat

  World's fastest and most advanced password recovery utility

  Language:C21.2k2.9k

• fortra/impacket

  Impacket is a collection of Python classes for working with network protocols.

  Language:Python13.5k3.6k

• beefproject/beef

  The Browser Exploitation Framework Project

  Language:JavaScript9.8k2.2k

• epsylon/xsser

  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

  Language:Python1.2k241

• trustedsec/social-engineer-toolkit

  The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

  Language:Python10.9k2.8k