mgv's Stars
trustedsec/unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
initstring/cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
orangetw/awesome-jenkins-rce-2019
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
zigoo0/JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
patois/mrspicky
MrsPicky - An IDAPython decompiler script that helps auditing memcpy() and memmove() calls
initstring/lxd_root
Linux privilege escalation via LXD
skeeto/skeeto.github.com
Personal website/blog
google/vulncode-db
Vulncode-DB project
externalist/exploit_playground
Analysis of public exploits or my 1day exploits
trailofbits/krf
A kernelspace syscall interceptor and randomized faulter
xsleaks/xsleaks
A collection of browser-based side channel attack vectors.
almroot/dnsresolvers
A bash script that fetches and maintains thousands of DNS resolvers
cirosantilli/linux-kernel-module-cheat
The perfect emulation setup to study and develop the Linux kernel v5.4.3, kernel modules, QEMU, gem5 and x86_64, ARMv7 and ARMv8 userland and baremetal assembly, ANSI C, C++ and POSIX. GDB step debug and KGDB just work. Powered by Buildroot and crosstool-NG. Highly automated. Thoroughly documented. Automated tests. "Tested" in an Ubuntu 24.04 host.
cool-RR/PySnooper
Never use print for debugging again
pwntester/ysoserial.net
Deserialization payload generator for a variety of .NET formatters
anshumanbh/kubebot
A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform
righettod/poc-graphql
Research on GraphQL from an AppSec point of view.
foospidy/web-cve-tests
A simple framework for sending test payloads for known web CVEs.
cure53/HTTPLeaks
HTTPLeaks - All possible ways, a website can leak HTTP requests
GTFOBins/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
ffuf/ffuf
Fast web fuzzer written in Go
mandiant/commando-vm
Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mandiant.com
find-sec-bugs/find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
ivre/ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, ProjectDiscovery tools, etc.
s0md3v/Photon
Incredibly fast crawler designed for OSINT.
almandin/fuxploider
File upload vulnerability scanner and exploitation tool.
fundacion-sadosky/abopp
Ejercicios y teoría sobre explotación de binarios y búsqueda de vulnerabilidades.
pwnwiki/pwnwiki.github.io
PwnWiki - The notes section of the pentesters mind.
skylot/jadx
Dex to Java decompiler
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework