mzfr / Gtfo
Licence: gpl-3.0
Search gtfobins and lolbas files from your terminal
Stars: ✭ 336
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Gtfo
Activereign
A Network Enumeration and Attack Toolset for Windows Active Directory Environments.
Stars: ✭ 210 (-37.5%)
Mutual labels: exploit, enumeration
Mida Multitool
Bash script purposed for system enumeration, vulnerability identification and privilege escalation.
Stars: ✭ 144 (-57.14%)
Mutual labels: exploit, enumeration
A Red Teamer Diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (+13.69%)
Mutual labels: exploit, enumeration
reosploit
A Tool that Finds, Enumerates, and Exploits Reolink Cameras.
Stars: ✭ 89 (-73.51%)
Mutual labels: exploit, enumeration
Pwn2own2020
Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities
Stars: ✭ 314 (-6.55%)
Mutual labels: exploit
Android Exploits
A collection of android Exploits and Hacks
Stars: ✭ 290 (-13.69%)
Mutual labels: exploit
Traitor
⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket
Stars: ✭ 3,473 (+933.63%)
Mutual labels: exploit
Cve 2017 11882
CVE-2017-11882 Exploit accepts over 17k bytes long command/code in maximum.
Stars: ✭ 280 (-16.67%)
Mutual labels: exploit
Sireprat
Remote Command Execution as SYSTEM on Windows IoT Core (releases available for Python2.7 & Python3)
Stars: ✭ 326 (-2.98%)
Mutual labels: exploit
Enumerate it
Enumerations for Ruby with some magic powers! 🎩
Stars: ✭ 300 (-10.71%)
Mutual labels: enumeration
Vbscan
OWASP VBScan is a Black Box vBulletin Vulnerability Scanner
Stars: ✭ 295 (-12.2%)
Mutual labels: exploit
Wordpress Xmlrpc Brute Force Exploit
Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield
Stars: ✭ 315 (-6.25%)
Mutual labels: exploit
Iblessing
iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.
Stars: ✭ 326 (-2.98%)
Mutual labels: exploit
Legion
Automatic Enumeration Tool based in Open Source tools
Stars: ✭ 280 (-16.67%)
Mutual labels: enumeration
Struts Pwn cve 2018 11776
An exploit for Apache Struts CVE-2018-11776
Stars: ✭ 300 (-10.71%)
Mutual labels: exploit
Armpwn
Repository to train/learn memory corruption on the ARM platform.
Stars: ✭ 320 (-4.76%)
Mutual labels: exploit
Windows kernel resources
Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
Stars: ✭ 298 (-11.31%)
Mutual labels: exploit
Sonarsearch
A MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (-11.61%)
Mutual labels: enumeration
gtfo
gtfo Wiki • Introduction • Usage • Installation • Gallery
gtfo is a tool purely written in python3 to search binaries on GTFOBins and LOLBAS.
Features
The only feature of this tool is to give you the ability to search gtfobins and lolbas from terminal.
oh and it also make you stick to your terminal. You won't have to face the bright light of your browser when you find out that vim is marked as SUID on the system you just got reverse shell on but don't know how to exploit that.
Gallery
- Searching GTFOBins
- Searching lolbas
- List exe
- List binaries
- Errors 😄
Contribution
- Report a bug
- Fix something and open a pull request
- There are some
TODOin the project. Help me complete those
In any case feel free to open an issue
Credits
Thanks to norbemi and cyrus_and for creating GTFOBins without that this project won't be in existence.
Also thanks to all the creators of LOLBAS
Support
If you'd like you can buy me some coffee:
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].