defarbs

🔏

Farbs defarbs

🔏

red teamer @mandiant

29 followers · 8 following

Achievements

defarbs.github.io Public

The official GitHub site for Farbs!

blog personal-site website hackthebox

JavaScript 3 Other 1 issue needs help Updated Jan 8, 2025
adconnectdump Public
Forked from dirkjanm/adconnectdump

Dump Azure AD Connect credentials for Azure AD and Active Directory

Python 2 Updated Aug 20, 2023
dompdf-exploit Public

Exploit for systems running dompdf 0.6.0 or lower. Tested on version 0.6.0 as well as all 0.6.0 beta versions.

Python 2 MIT License Updated Feb 12, 2023
Active-Directory-Exploitation-Cheat-Sheet Public
Forked from S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

MIT License Updated Dec 25, 2022
vulnerable_xss Public
Forked from we45/vulnerable_xss

JavaScript Updated Mar 20, 2021
dearg-thread-ipc-stealth Public
Forked from LloydLabs/dearg-thread-ipc-stealth

A novel technique to communicate between threads using the standard ETHREAD structure

C Updated Feb 27, 2021
Cobalt-Strike-CheatSheet Public
Forked from S1ckB0y1337/Cobalt-Strike-CheatSheet

Some notes and examples for cobalt strike's functionality

MIT License Updated Feb 23, 2021
SharpCollection Public
Forked from Flangvik/SharpCollection

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Updated Feb 20, 2021
wdb Public
Forked from Kozea/wdb

An improbable web debugger through WebSockets

Python GNU General Public License v3.0 Updated Jun 6, 2020
CrackMapExec Public
Forked from byt3bl33d3r/CrackMapExec

A swiss army knife for pentesting networks

Python BSD 2-Clause "Simplified" License Updated Mar 9, 2020
PayloadsAllTheThings Public
Forked from swisskyrepo/PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Python MIT License Updated Feb 6, 2020
GTFOBins.github.io Public
Forked from GTFOBins/GTFOBins.github.io

Curated list of Unix binaries that can be exploited to bypass system security restrictions

HTML GNU General Public License v3.0 Updated Jan 8, 2020
ROPgadget Public
Forked from JonathanSalwan/ROPgadget

This tool lets you search your gadgets on your binaries to facilitate your ROP exploitation. ROPgadget supports ELF, PE and Mach-O format on x86, x64, ARM, ARM64, PowerPC, SPARC and MIPS architectu…

Python Other Updated Aug 26, 2019
ropstar Public
Forked from xct/ropstar

Automatic exploit generation for simple linux pwn challenges.

Python MIT License Updated Aug 25, 2019
code-snippets Public
Forked from Alamot/code-snippets

Various code snippets

PowerShell The Unlicense Updated Aug 24, 2019
PowerSploit Public
Forked from PowerShellMafia/PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

PowerShell Other Updated Aug 20, 2019
chomp-scan Public
Forked from SolomonSklash/chomp-scan

A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.

Shell GNU General Public License v3.0 Updated Jul 26, 2019
A-Red-Teamer-diaries Public
Forked from ihebski/A-Red-Teamer-diaries

Red_teaming/Pentesting notes and experiments for a real world engagements

Updated Jul 25, 2019
Platypus Public
Forked from WangYihang/Platypus

🔨 A modern multiple reverse shell sessions manager written in go

Go GNU Lesser General Public License v3.0 Updated Jul 24, 2019
sherlock Public
Forked from sherlock-project/sherlock

🔎 Find usernames across social networks

Python MIT License Updated Jul 19, 2019
OSCP-Exam-Report-Template Public
Forked from whoisflynn/OSCP-Exam-Report-Template

Modified template for the OSCP Exam. Used it during my passing attempt

Updated Jul 17, 2019
THRecon Public
Forked from TonyPhipps/Meerkat

Threat Hunting Reconnaissance Toolkit

PowerShell GNU General Public License v3.0 Updated Jul 17, 2019
VHostScan Public
Forked from codingo/VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Python GNU General Public License v3.0 Updated Jul 8, 2019
stego-toolkit Public
Forked from DominicBreuker/stego-toolkit

Collection of steganography tools - helps with CTF challenges

Shell Updated Jun 23, 2019
can-i-take-over-xyz Public
Forked from EdOverflow/can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Updated Jun 20, 2019
Amass Public
Forked from owasp-amass/amass

In-depth DNS Enumeration and Network Mapping

Go Other Updated Jun 17, 2019
windapsearch Public
Forked from ropnop/windapsearch

Python script to enumerate users, groups and computers from a Windows domain through LDAP queries

Python GNU General Public License v3.0 Updated Jun 13, 2019
domained Public
Forked from TypeError/domained

Multi Tool Subdomain Enumeration

Python GNU General Public License v3.0 Updated Jun 12, 2019
OSCPRepo Public
Forked from rewardone/OSCPRepo

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and re…

HTML MIT License Updated Jun 3, 2019
filebuster Public
Forked from henshin/filebuster

An extremely fast and flexible web fuzzer

Perl GNU General Public License v3.0 Updated May 29, 2019

Farbs defarbs

Achievements

Achievements

defarbs.github.io Public

Uh oh!

adconnectdump Public

Uh oh!

dompdf-exploit Public

Uh oh!

Active-Directory-Exploitation-Cheat-Sheet Public

Uh oh!

vulnerable_xss Public

Uh oh!

dearg-thread-ipc-stealth Public

Uh oh!

Cobalt-Strike-CheatSheet Public

Uh oh!

SharpCollection Public

Uh oh!

wdb Public

Uh oh!

CrackMapExec Public

Uh oh!

PayloadsAllTheThings Public

Uh oh!

GTFOBins.github.io Public

Uh oh!

ROPgadget Public

Uh oh!

ropstar Public

Uh oh!

code-snippets Public

Uh oh!

PowerSploit Public

Uh oh!

chomp-scan Public

Uh oh!

A-Red-Teamer-diaries Public

Uh oh!

Platypus Public

Uh oh!

sherlock Public

Uh oh!

OSCP-Exam-Report-Template Public

Uh oh!

THRecon Public

Uh oh!

VHostScan Public

Uh oh!

stego-toolkit Public

Uh oh!

can-i-take-over-xyz Public

Uh oh!

Amass Public

Uh oh!

windapsearch Public

Uh oh!

domained Public

Uh oh!

OSCPRepo Public

Uh oh!

filebuster Public

Uh oh!