Pinned Repositories
BurpSuiteHTTPSmuggler
A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
demiguise
HTA encryption tool for RedTeams
house
A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.
LoggerPlusPlus
Advanced Burp Suite Logging Extension
PMapper
A tool for quickly evaluating IAM permissions in AWS.
Scout2
Security auditing tool for AWS environments
ScoutSuite
Multi-Cloud Security Auditing Tool
sobelow
Security-focused static analysis for the Phoenix Framework
whalescan
Whalescan is a vulnerability scanner for Windows containers, which performs several benchmark checks, as well as checking for CVEs/vulnerable packages on the container
Winpayloads
Undetectable Windows Payload Generation
NCC Group Plc's Repositories
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
nccgroup/sobelow
Security-focused static analysis for the Phoenix Framework
nccgroup/PMapper
A tool for quickly evaluating IAM permissions in AWS.
nccgroup/singularity
A DNS rebinding attack framework.
nccgroup/exploit_mitigations
Knowledge base of exploit mitigations available across numerous operating systems, architectures and applications and versions.
nccgroup/Sniffle
A sniffer for Bluetooth 5 and 4.x LE
nccgroup/fuzzowski
the Network Protocol Fuzzer that we will want to use.
nccgroup/aws-inventory
Discover resources created in an AWS account.
nccgroup/LoggerPlusPlus
Advanced Burp Suite Logging Extension
nccgroup/phantap
Phantom Tap (PhanTap) - an ‘invisible’ network tap aimed at red teams
nccgroup/blackboxprotobuf
Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.
nccgroup/autochrome
This tool downloads, installs, and configures a shiny new copy of Chromium.
nccgroup/Cartographer
Code Coverage Exploration Plugin for Ghidra
nccgroup/keimpx
Check for valid credentials across a network over SMB
nccgroup/TriforceLinuxSyscallFuzzer
A linux system call fuzzer using TriforceAFL
nccgroup/typofinder
A finder of domain typos showing country of IP address
nccgroup/libslub
nccgroup/SteppingStones
A Red Team Activity Hub
nccgroup/SCOMDecrypt
SCOMDecrypt is a tool to decrypt stored RunAs credentials from SCOM servers
nccgroup/ghostrings
Ghidra scripts for recovering string definitions in Go binaries
nccgroup/hashcrack
Guesses hash types, picks some sensible dictionaries and rules for hashcat
nccgroup/ConscryptTrustUserCerts
nccgroup/kubetcd
Post-exploit a compromised etcd, gain persistence and remote shell to nodes.
nccgroup/ghidra-nanomips
nanoMIPS module for Ghidra
nccgroup/manim-cranim
Toolkit for creating cryptographic figures and videos.
nccgroup/mtk_bp
MediaTek BP firmware tools
nccgroup/pasta-curves
Provides the Pasta curves: Pallas, Vesta and their field elements Fp and Fq.
nccgroup/fips203
Pure Rust implementation of (draft) FIPS 203 Module-Lattice-based Key-Encapsulation Mechanism Standard for server, desktop, browser and embedded applications.
nccgroup/android_demystification_toolbox
ADT is a toolset designed to help model application behavior, research and test security vulnerabilities, and facilitate reversing hostile code.
nccgroup/chipsec
Platform Security Assessment Framework