gfctam

gfctam's Stars

• Lissy93/web-check

  🕵️‍♂️ All-in-one OSINT tool for analysing any website

  Language:TypeScript21.9k1301011.7k

• I-S00N/I-S00N

  3.9k53721.9k

• snoopysecurity/awesome-burp-extensions

  A curated list of amazingly awesome Burp Extensions

  3k1234591

• Pennyw0rth/NetExec

  The Network Execution Tool

  Language:Python2.9k23138309

• Az0x7/vulnerability-Checklist

  This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

  2.3k502547

• flygon2018/MobaXterm-keygen

  A keygen for MobaXterm

  Language:Python1.7k1801.2k

• kimci86/bkcrack

  Crack legacy zip encryption with Biham and Kocher's known plaintext attack.

  Language:C++1.6k20113159

• GhostPack/Certify

  Active Directory certificate abuse.

  Language:C#1.5k2825198

• OmerYa/Invisi-Shell

  Hide your Powershell script in plain sight. Bypass all Powershell security features

  Language:C++1.1k422154

• netero1010/EDRSilencer

  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

  Language:C1.1k139140

• drk1wi/portspoof

  Portspoof

  Language:Makefile9585136146

• mgeeky/RedWarden

  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation

  Language:Python9152121140

• c3c/ADExplorerSnapshot.py

  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

  Language:Python869829111

• FuzzySecurity/StandIn

  StandIn is a small .NET35/45 AD post-exploitation toolkit

  Language:C#684166118

• Sh3lldon/FullBypass

  A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

  Language:C#63342111

• AlmondOffSec/PassTheCert

  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel

  Language:C#54181565

• waf-bypass-maker/waf-community-bypasses

  44113196

• simplerhacking/Evilginx3-Phishlets

  This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3. May be updated periodically.

  426202091

• Hagrid29/PELoader

  PE loader with various shellcode injection techniques

  Language:C++3719456

• senzee1984/Amsi_Bypass_In_2023

  Amsi Bypass payload that works on Windwos 11

  Language:PowerShell3693065

• mertdas/PrivKit

  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.

  Language:C3645038

• WesleyWong420/OPSEC-Tradecraft

  Collection of OPSEC Tradecraft and TTPs for Red Team Operations

  Language:PowerShell2666029

• florylsk/RecycledInjector

  Native Syscalls Shellcode Injector

  Language:C2592041

• kgretzky/evilqr

  Proof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.

  Language:JavaScript2567843

• lawndoc/RanSim

  Ransomware simulation script written in PowerShell. Useful for testing your defenses and backups against real ransomware-like activity in a controlled setting.

  Language:PowerShell1964128

• EvilGreys/Hide-CobaltStrike

  Hide your CobaltStrike PRO

  1585023

• daem0nc0re/Abusing_Weak_ACL_on_Certificate_Templates

  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)

  1184017

• bezzad/AntiDebugging

  .Net Framweork and .Net Core Anti Debugging to stop multiple malicious tools and hooks on your software.

  Language:C#38137

• koparmalbaris/NTLM-Dementor

  Get all NetNTLM Hashes via Different zero-click Methodologies from LLMNR Poisoning

  Language:PowerShell16232

• GeorgePatsias/AskCreds-CS

  A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.

  Language:C11202