xlash

xlash's Stars

• sherlock-project/sherlock

  Hunt down social media accounts by username across social networks

  Language:Python59.2k1.1k9806.8k

• djsime1/awesome-flipperzero

  🐬 A collection of awesome resources for the Flipper Zero device.

  18.4k6410808

• Lissy93/personal-security-checklist

  🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

  Language:TypeScript16.8k211851.2k

• flipperdevices/flipperzero-firmware

  Flipper Zero firmware source code

  Language:C12.6k2871.1k2.7k

• byt3bl33d3r/CrackMapExec

  A swiss army knife for pentesting networks

  Language:Python8.4k3075581.6k

• epi052/feroxbuster

  A fast, simple, recursive content discovery tool written in Rust.

  Language:Rust5.8k52287492

• s0md3v/Arjun

  HTTP parameter discovery suite.

  Language:Python5.2k86143789

• riramar/Web-Attack-Cheat-Sheet

  Web Attack Cheat Sheet

  4.1k1087635

• GhostPack/Rubeus

  Trying to tame the three-headed dog.

  Language:C#4k8376773

• AonCyberLabs/Windows-Exploit-Suggester

  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.

  Language:Python3.9k169361k

• GhostPack/Seatbelt

  Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

  Language:C#3.7k10629680

• projectdiscovery/interactsh

  An OOB interaction gathering server and client library

  Language:Go3.3k40188355

• Sysinternals/ProcDump-for-Linux

  A Linux version of the ProcDump Sysinternals tool

  Language:C2.9k107102304

• microsoft/AttackSurfaceAnalyzer

  Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

  Language:C#2.7k70330276

• sensepost/ruler

  A tool to abuse Exchange services

  Language:Go2.2k9999357

• cisagov/Sparrow

  Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.

  Language:PowerShell1.4k10860182

• ossf/allstar

  GitHub App to set and enforce security policies

  Language:Go1.2k32164123

• Arvanaghi/SessionGopher

  SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

  Language:PowerShell1.2k493169

• cisagov/log4j-affected-db

  A community sourced list of log4j-affected software

  Language:Shell1.1k85154281

• PlumHound/PlumHound

  Bloodhound Reporting for Blue and Purple Teams

  Language:Python1.1k3824109

• Arinerron/CVE-2022-0847-DirtyPipe-Exploit

  A root exploit for CVE-2022-0847 (Dirty Pipe)

  Language:C1.1k179218

• RythmStick/AMSITrigger

  The Hunt for Malicious Strings

  Language:C#1.1k138153

• CrowdStrike/CRT

  Contact: CRT@crowdstrike.com

  Language:PowerShell7013630138

• ovotech/gitoops

  all paths lead to clouds

  Language:Go62918849

• domain-protect/domain-protect

  OWASP Domain Protect - prevent subdomain takeover

  Language:Python395124864

• GossiTheDog/SystemNightmare

  Gives you instant SYSTEM command prompt on all supported and legacy versions of Windows

  Language:Batchfile37916548

• alt3kx/CVE-2023-24055_PoC

  CVE-2023-24055 PoC (KeePass 2.5x)

  2547038

• boostsecurityio/poutine

  boostsecurityio/poutine

  Language:Go21175321

• vavarachen/evtx2json

  A tool to convert Windows evtx files (Windows Event Log Files) into JSON format and log to Splunk (optional) using HTTP Event Collector.

  Language:Python526112

• ChrisForsythe/SplunkStuff

  A repository for generalized splunk code, dashboards, resources and suggestions/recommendations.

  301174