mpgn's Stars
ickerwx/tcpproxy
Intercepting TCP proxy to modify raw TCP streams using modules on incoming or outgoing traffic
urwid/urwid
Console user interface library for Python (official repo)
mmozeiko/aes-finder
Utility to find AES keys in running processes
syvaidya/openstego
OpenStego is a steganography application that provides two functionalities: a) Data Hiding: It can hide any data within an image file. b) Watermarking: Watermarking image files with an invisible signature. It can be used to detect unauthorized file copying.
bartobri/no-more-secrets
A command line tool that recreates the famous data decryption effect seen in the 1992 movie Sneakers.
dionach/NtdsAudit
An Active Directory audit utility
itm4n/VBA-RunPE
A VBA implementation of the RunPE technique or how to bypass application whitelisting.
trimstray/mkchain
Open source tool to help you build a valid SSL certificate chain.
rasta-mouse/Sherlock
PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
IAIK/meltdown
This repository contains several applications, demonstrating the Meltdown bug.
HTBridge/pivaa
Created by High-Tech Bridge, the Purposefully Insecure and Vulnerable Android Application (PIVAA) replaces outdated DIVA for benchmark of mobile vulnerability scanners.
peewpw/Invoke-WCMDump
PowerShell Script to Dump Windows Credentials from the Credential Manager
Acceis/crypto_identifier
Crypto tool for pentest and ctf : try to uncipher data using multiple algorithms and block chaining modes. Usefull for a quick check on unknown cipher text and key dictionnary
feo-cz/win-sshfs
Fork of http://code.google.com/p/win-sshfs/
spencerdodd/kernelpop
kernel privilege escalation enumeration and exploitation framework
ZonkSec/weblogic-serialization-exploit-updated
Updated the FoxGlove Security WebLogic serialization exploit.
HarmJ0y/TrustVisualizer
Python script that takes new output from Get-DomainTrustMapping .csvs and outputs graphml. Based on DomainTrustExplorer.
orlyjamie/mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
cyberheartmi9/CVE-2017-12617
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
athityakumar/colorls
A Ruby gem that beautifies the terminal's ls command, with color and font-awesome icons. :tada:
0x90/vpn-arsenal
VPN pentest tools and scripts
NickstaDB/BaRMIe
Java RMI enumeration and attack tool.
aksakalli/gtop
System monitoring dashboard for terminal
mazen160/struts-pwn
An exploit for Apache Struts CVE-2017-5638
magoo/redteam-plan
Issues to consider when planning a red team exercise.
electro7/dot_debian
Config files for linux (debian based)
p3nt4/PowerShdll
Run PowerShell with rundll32. Bypass software restrictions.
sensepost/ruler
A tool to abuse Exchange services
vivami/MS17-010
MS17-010
Kevin-Robertson/Inveigh
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers