Pinned Repositories
AutoSploit
Automated Mass Exploiter
CloudScraper
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
flaskbomb
GZip HTTP Bombing in Python for everyone
github-starmap
Python utility to export a user's starred repositories list into a CSV file
h8mail
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
LeakLooker
Find open databases - Powered by Binaryedge.io
Offensive-Dockerfiles
Offensive tools as Dockerfiles. Lightweight & Ready to go
Redcloud
Automated Red Team Infrastructure deployement using Docker
trape
People tracker on the Internet: Learn to track the world, to avoid being traced.
Zeus-Scanner
Advanced reconnaissance utility
khast3x's Repositories
khast3x/github-starmap
Python utility to export a user's starred repositories list into a CSV file
khast3x/trape
People tracker on the Internet: Learn to track the world, to avoid being traced.
khast3x/GitMiner
Tool for advanced mining for content on Github
khast3x/AutoSQLi
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
khast3x/AutoNSE
Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScanner
khast3x/credmap
The Credential Mapper
khast3x/EmailHarvester
Email addresses harvester
khast3x/FiercePhish
FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.
khast3x/BruteX
Automatically brute force all services running on a target.
khast3x/GoRedLoot
A tool to collect secrets (keys and passwords) and stage (compress and encrypt) them for exfiltration.
khast3x/Memcrashed-DDoS-Exploit
DDoS attack tool for sending forged UDP packets to vulnerable Memcached servers obtained using Shodan API
khast3x/SimplyEmail
Email recon made fast and easy, with a framework to build on
khast3x/ctfr
Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
khast3x/datasploit
An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
khast3x/haveibeenpwned
Python script to verify multiple email addresses for pwnage
khast3x/koadic
Koadic C3 COM Command & Control - JScript RAT
khast3x/MailFail
Proof of Concept - Utilize misconfigured newsletter forms to spam / deny service to an inbox
khast3x/Striker
Striker is an offensive information and vulnerability scanner.
khast3x/V3n0M-Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
khast3x/BreachCompilation
BreachCompilation Tools
khast3x/fake-rdp
Emulate the handshake packets of an RDP server with python
khast3x/offensiveinterview
Interview questions to screen offensive (red team/pentest) candidates
khast3x/Shiva
Improved DOS exploit for wordpress websites (CVE-2018-6389)
khast3x/sqliv
massive SQL injection vulnerability scanner
khast3x/SupergirlOnCrypt
CryptoTrojan in Python (For educational purpose ONLY)
khast3x/trevorc2
TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.
khast3x/BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
khast3x/carte-noire
A simple jekyll theme for blogging
khast3x/CtrlHandlerHookPersistance
An Idea I had that im futzing with.
khast3x/jekyll-now
Build a Jekyll blog in minutes, without touching the command line.