securekomodo
A collection of my own projects and contributions -or- cool things other people built.
Redline Cyber SecurityUSA
Pinned Repositories
citrixInspector
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
cve-2022-26134
CVE-2022-26134 Proof of Concept
CVE-2024-22026
Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"
CVE-2024-22734
Exploit POC for CVE-2024-22734 affecting AMCS Trux Software
LinkedIn-Timestamp
LinkedIn Timestamp Tool is a Python script that extracts the exact date and time a LinkedIn post was created from its URL. This information is valuable for Open Source Intelligence (OSINT) investigations and penetration testing scenarios.
RansomwareSimulator
Powershell script to emulate the "blast radius" of a ransomware infection.
text4shell-poc
Proof of Concept Appliction for testing CVE-2022-42889
text4shell-scan
A fully automated, accurate, and extensive scanner for finding text4shell RCE CVE-2022-42889
securekomodo's Repositories
securekomodo/citrixInspector
Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519
securekomodo/text4shell-scan
A fully automated, accurate, and extensive scanner for finding text4shell RCE CVE-2022-42889
securekomodo/CVE-2024-22026
Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"
securekomodo/text4shell-poc
Proof of Concept Appliction for testing CVE-2022-42889
securekomodo/CVE-2024-22734
Exploit POC for CVE-2024-22734 affecting AMCS Trux Software
securekomodo/cve-2022-26134
CVE-2022-26134 Proof of Concept
securekomodo/LinkedIn-Timestamp
LinkedIn Timestamp Tool is a Python script that extracts the exact date and time a LinkedIn post was created from its URL. This information is valuable for Open Source Intelligence (OSINT) investigations and penetration testing scenarios.
securekomodo/LinkedInt
LinkedIn Recon Tool
securekomodo/onedrive_user_enum
onedrive user enumeration - pentest tool to enumerate valid onedrive users
securekomodo/opendrop
An open Apple AirDrop implementation written in Python
securekomodo/pugberry
PugBerryPi - Droppin Pugs OTA
securekomodo/wordlists
Random wordlists
securekomodo/Wheel-of-Misfortune
Wheel of Misfortune is a Fully HTML/JS Halloween-themed Wheel of Fortune style game. Spin or Die! 🎃
securekomodo/apache-log4j-poc
Apache Log4j 远程代码执行
securekomodo/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
securekomodo/Azure-Red-Team
Azure Security Resources and Notes
securekomodo/AzureAD-incident-response
Notes on responding to security breaches relating to Azure AD
securekomodo/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
securekomodo/CVE-2021-44228-Log4Shell-Hashes
Hashes for vulnerable LOG4J versions
securekomodo/CVE-2023-38035
Ivanti Sentry Exploit POC CVE-2023-38035
securekomodo/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
securekomodo/inceptor
Template-Driven AV/EDR Evasion Framework
securekomodo/log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
securekomodo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
securekomodo/Red-Teaming-Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
securekomodo/Scrummage
The Ultimate OSINT and Threat Hunting Framework
securekomodo/securekomodo.github.io
Github Page for @securekomodo
securekomodo/SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
securekomodo/threat-intel
Signatures and IoCs from public Volexity blog posts.
securekomodo/updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.