Pinned Repositories
CMSeeK
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
fake-sms-1
A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like a proxy.
http-server-online
Start a local HTTP server without any tools, just open a web page.
KeyLogger-WebService
"KeyLogger-WebService" Is a Keylogger Write In python.
krusty
Bot consulta de números de DNI PERU
phaser
Automated attack surface mapper and vulnerability scanner
sshmap
SSH Tool For OSINT and then Cracking.
SUID3NUM
A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
vajra_scan_online_all
Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
marcoshat's Repositories
marcoshat/AutoPWN-Suite
AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
marcoshat/mip22
:computer: :iphone: mip22 is a advanced phishing tool
marcoshat/VAmPI
Vulnerable REST API with OWASP top 10 vulnerabilities for security testing
marcoshat/bore
🕳 bore is a simple CLI tool for making tunnels to localhost
marcoshat/Smap
a drop-in replacement for Nmap powered by shodan.io
marcoshat/socialhunter
crawls the website and finds broken social media links that can be hijacked
marcoshat/BITB-framwork
marcoshat/spring4shell-scan
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
marcoshat/CVE-2022-22965
Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)
marcoshat/Cam-Hackers
Hack Cameras CCTV FREE
marcoshat/pync
arbitrary TCP and UDP connections and listens (Netcat for Python).
marcoshat/Spring4Shell-POC
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
marcoshat/CVE-2022-22963
marcoshat/vulnx
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collection (including sub-domain name, ip address, country information, organizational information and time zone, etc.) and vulnerability scanning.
marcoshat/ostorlab
Ostorlab is a security scanning platform that enables running complex security scanning tasks involving multiple tools in an easy, scalable and distributed way.
marcoshat/BITB-plantillas_phishing
Browser In The Browser (BITB) Templates
marcoshat/russia_ddos
marcoshat/PyShell_webshells
Multiplatform Python WebShell
marcoshat/recon-automation
This script will install all the essential bug bounty tools and will find some basic vulns. I made this script for my daily hunting. The best feature about this script is just run it in background and then analyze the target manually.
marcoshat/Shelly
Automatic Reverse Shell Generator
marcoshat/krusty
Bot consulta de números de DNI PERU
marcoshat/CVE-2022-25064
marcoshat/iKy_osint_email
OSINT Project
marcoshat/evilscan
NodeJS Simple Network Scanner
marcoshat/moonwalk
Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.
marcoshat/Chaya_crifrado_estego
Advance Image Steganography
marcoshat/blackbuntu
Official repository of the Blackbuntu pentesting distribution
marcoshat/GoMapEnum
User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin
marcoshat/daedalOS_sistema_desde-navegador
Desktop environment in the browser.
marcoshat/dontgo403
Tool to bypass 40X response codes.