tanprathan's Stars
topjohnwu/Magisk
The Magic Mask for Android
mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
blaCCkHatHacEEkr/PENTESTING-BIBLE
articles
threat9/routersploit
Exploitation Framework for Embedded Devices
krzyzanowskim/CryptoSwift
CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift
michenriksen/gitrob
Reconnaissance tool for GitHub organizations
DominicBreuker/pspy
Monitor linux processes without root permissions
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
charles2gan/GDA-android-reversing-Tool
the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
S3cur3Th1sSh1t/WinPwn
Automation for internal Windows Penetrationtest / AD-Security
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
m0bilesecurity/RMS-Runtime-Mobile-Security
Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime
rockbruno/swiftshield
🔒 Swift Obfuscator that protects iOS apps against reverse engineering attacks.
icsharpcode/AvaloniaILSpy
Avalonia-based .NET Decompiler (port of ILSpy)
byt3bl33d3r/SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
IvanGlinkin/Fast-Google-Dorks-Scan
The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.
ChiChou/bagbak
Yet another frida based iOS dumpdecrypted. Also decrypts app extensions
DerekSelander/dsdump
An improved nm + Objective-C & Swift class-dump
ghidraninja/ghidra_scripts
Scripts for the Ghidra software reverse engineering suite.
jobertabma/relative-url-extractor
A small tool that extracts relative URLs from a file.
bongtrop/hbctool
Hermes Bytecode Reverse Engineering Tool (Assemble/Disassemble Hermes Bytecode)
mgeeky/tomcatWarDeployer
Apache Tomcat auto WAR deployment & pwning penetration testing tool.
padovah4ck/CVE-2019-1253
Poc for CVE-2019-1253
ruthlezs/CVE-2019-2729-Exploit
CVE-2019-2729 Exploit Script
Secure-D/wastc
Secure-D Web Application Security Test Checklist summarizes well-known weaknesses, vulnerabilities and best practices into review topics with short description and recommendation. Its objective is to aid penetration tester to review the web application thoroughly.
bongtrop/ezhz-android
Secure-D/fuzzing_tutorial
Mutation Based Grey Box Fuzzing with AFL Tutorial
Sinderella/codeql-intro