Burpcrypto is a collection of burpsuite encryption plug-ins, supporting AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).Build$ mvn packageUsage中文使用说明Download the precompiled jar...
bopscrk (Before Outset PaSsword CRacKing) is a tool to generate smart and powerful wordlists for targeted attacks.Included in BlackArch Linux...
AutomatedLab (AL) enables you to setup test and lab environments on Hyper-v or Azure with multiple products or just a...
efiXplorer - IDA plugin for UEFI firmware analysis and reverse engineering automation Supported versions of Hex-Rays products: everytime we focus...
LeakDB is a tool set designed to allow organizations to build and deploy their own internal plaintext "Have I Been...
kekeo is a little toolbox I have started to manipulate Microsoft Kerberos in C (and for fun) ASN.1 libraryIn kekeo,...
pwncat is a post-exploitation platform for Linux targets. It started out as a wrapper around basic bind and reverse shells...
Certify is a C# tool to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). @harmj0y and @tifkin_...
This repository contains some utilities for playing with PKINIT and certificates. The tools are built on minikerberos and impacket. Accompanying...
SharpML is a proof of concept file share data mining tool using Machine Learning in Python and C#. The tool...
WebStor is a tool implemented in Python under the MIT license for quickly enumerating all websites across all of your...
Kodex (Community Edition - CE) is an open-source toolkit for privacy and security engineering. It helps you to automate data...
LittleCorporal: A C# Automated Maldoc Generator C:LittleCorporalbinRelease>LittleCorporal.exe C:beacon.bin explorer.exe.____ .__ __ __ .__ _________ .__| | |__|/ |__/ |_| |...
SharpSpray is a Windows domain password spraying tool written in .NET C#. IntroductionSharpSpray is a C# port of DomainPasswordSpray with...
StreamDivert is a tool to man-in-the-middle or relay in and outgoing network connections on a system. It has the ability...
CloudQuery transforms your cloud infrastructure into queryable SQL for easy monitoring, governance and security.What is CloudQuery and why use it?CloudQuery...
Lightweight UNIX backdoor for ethical hacking. Useful for red team engagements and CTFs. Something I wrote a few years ago...
中文版本(Chinese version) About DongTai IASTDongTai IAST is an open-source passive interactive security testing (IAST) product. It uses dynamic hooks and...
QueenSono tool only relies on the fact that ICMP protocol isn't monitored. It is quite common. It could also been...
Project dedicated to provide DDoS protection with proof-of-workDescriptionPoW Shield provides DDoS protection on OSI application layer by acting as a...
Turns any junk text into a usable wordlist for brute-forcing.Installationgo install github.com/hakluke/haklistgen@latest Usage ExamplesScrape all words out of an HTTP...
Reconky is a script written in bash to automate the task of recon and information gathering.This Bash Script allows you...
Source code analysis - Screenshot Supporting Materials : https://twitter.com/har1sec/status/1314469278322655233 https://github.com/BlackFan/client-side-prototype-pollution https://github.com/ThePacketBender/notes/blob/01c0b834f6e3ee4d934b087b2d92c9e484dc2a50/web/prototype_pollution.txt https://habr.com/ru/company/huawei/blog/547178/ https://infosecwriteups.com/javascript-prototype-pollution-practice-of-finding-and-exploitation-f97284333b2 https://github.com/securitum/research/tree/master/r2020_prototype-pollution Learn Prototype Pollution in Series -...
wordlistgen is a tool to pass a list of URLs and get back a list of relevant words for your...
