#
Starred repositories
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
PLEASE USE NEW VERSION: https://github.com/kgretzky/evilginx2
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…
Active Directory Auditing and Enumeration
Bug Bounty Hunting Framework Designed to Help Beginners Compete w/ the Pros
Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE
Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/
Collection of Cyber Threat Intelligence sources from the deep and dark web
List of telegram groups, channels & bots // Список интересных групп, каналов и ботов телеграма // Список чатов для программистов
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
Authenticated Remote Command Execution in Gitlab via GitHub import
Zero-day vulnerabilities affecting Microsoft Exchange Server
A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
A simple multi-threaded distributed SSH brute-forcing tool written in Python
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
ADAT is a small tool used to assist CTF players and Penetration testers with easy commands to run against an Active Directory Domain Controller. This tool is is best utilized using a set of known c…