H4ckerThis repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+28930.56%)
exploitingExploiting challenges in Linux and Windows
Stars: ✭ 122 (+238.89%)
Beef Over WanBrowser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]
Stars: ✭ 82 (+127.78%)
FeatherdusterAn automated, modular cryptanalysis tool; i.e., a Weapon of Math Destruction
Stars: ✭ 876 (+2333.33%)
pwnscriptsVery simple script(s) to hasten binary exploit creation
Stars: ✭ 66 (+83.33%)
SubRosaBasic tool to automate backdooring PE files
Stars: ✭ 48 (+33.33%)
GhostGhost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device.
Stars: ✭ 1,934 (+5272.22%)
Pentest Tools FrameworkPentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities
Stars: ✭ 48 (+33.33%)
ShadowStealPure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
Stars: ✭ 186 (+416.67%)
GhostGhost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.
Stars: ✭ 992 (+2655.56%)
GefGEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging features for exploit developers & reverse engineers ☢
Stars: ✭ 4,197 (+11558.33%)
MouseMouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.
Stars: ✭ 186 (+416.67%)
readhookRed-team tool to hook libc read syscall with a buffer overflow vulnerability.
Stars: ✭ 31 (-13.89%)
tntA 2d Game Engine written in C++20.
Stars: ✭ 30 (-16.67%)
exploitCollection of different exploits
Stars: ✭ 153 (+325%)
ProxyLogonProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)
Stars: ✭ 112 (+211.11%)
shakeitoffWindows MSI Installer LPE (CVE-2021-43883)
Stars: ✭ 68 (+88.89%)
discord-bugs-exploitsA Collection of Various Discord Bugs, Exploits, Un-Documented Parts of the Discord API, and Other Discord Related Miscellaneous Stuff.
Stars: ✭ 22 (-38.89%)
ExploitsA personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.
Stars: ✭ 75 (+108.33%)
PythonPython Powered Repository
Stars: ✭ 17 (-52.78%)
ng-leafletAngular 2 component for Leaflet 1.x (WIP - Help Wanted)
Stars: ✭ 16 (-55.56%)
k8badusbBadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit
Stars: ✭ 32 (-11.11%)
exploit-CVE-2015-3306ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container
Stars: ✭ 97 (+169.44%)
GlassGui Library written in Crystal
Stars: ✭ 24 (-33.33%)
cylon-debTUI menu driven bash shell script to update and maintain a Debian based Linux distro.
Stars: ✭ 23 (-36.11%)
prl guest to hostGuest to host VM escape exploit for Parallels Desktop
Stars: ✭ 26 (-27.78%)
BashCollection of bash scripts I wrote to make my life easier or test myself that you may find useful.
Stars: ✭ 19 (-47.22%)
PwnX.py🏴☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit
Stars: ✭ 30 (-16.67%)
CVE-2019-10149CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
Stars: ✭ 15 (-58.33%)
AxonUnrestricted Lua Execution
Stars: ✭ 59 (+63.89%)
Umbraco-RCEUmbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
Stars: ✭ 61 (+69.44%)
Scripts-SploitsA number of scripts POC's and problems solved as pentests move along.
Stars: ✭ 37 (+2.78%)
doonaNetwork based protocol fuzzer
Stars: ✭ 64 (+77.78%)
IDA WrapperAn IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.
Stars: ✭ 14 (-61.11%)
Keylogger-Screen-CaptureIt is primary designed to be hidden and monitoring the computer activity. Take a screenshot of desktop in hidden mode using Visual C++ and save automatically to 'jpeg' file in every 30 second. 60+ Most Popular antivirus not detect this application while it is running on background.
Stars: ✭ 37 (+2.78%)
mRemoteNG-DecryptPython script to decrypt passwords stored by mRemoteNG
Stars: ✭ 96 (+166.67%)
rtl-everywhere[WIP] React Testing Library everywhere
Stars: ✭ 27 (-25%)
FastPwnCTF中Pwn的快速利用模板(包含awd pwn)
Stars: ✭ 18 (-50%)
MoltenEngineA spare-time C# .NET 6 game engine project. Cross-platform, multi-threaded.
Stars: ✭ 113 (+213.89%)
bstBinary String Toolkit (BST). Quickly and easily convert binary strings for all your exploit development needs. 😎
Stars: ✭ 25 (-30.56%)
RageRage allows you to execute any file in a Microsoft Office document.
Stars: ✭ 68 (+88.89%)
expdevVulnerable software and exploits used for OSCP/OSCE preparation
Stars: ✭ 24 (-33.33%)
Bear-Blog-EngineModern blog engine made with Go and the Next.js framework
Stars: ✭ 23 (-36.11%)
batchqlGraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
Stars: ✭ 251 (+597.22%)
go-gtfogtfo, now with the speed of golang
Stars: ✭ 59 (+63.89%)
padreBlazing fast, advanced Padding Oracle exploit
Stars: ✭ 35 (-2.78%)
apple-knowledgeA collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware
Stars: ✭ 338 (+838.89%)
Discord-Block-BypassSimple script that utilities discord's flaw in detecting who blocked who.
Stars: ✭ 24 (-33.33%)
exploitsExploits developed by me.
Stars: ✭ 35 (-2.78%)
CRAXCRAX: software CRash analysis for Automatic eXploit generation
Stars: ✭ 44 (+22.22%)
Ultimate-Guitar-HackThe first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar
Stars: ✭ 61 (+69.44%)
x64dbgpylibPort of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.
Stars: ✭ 46 (+27.78%)
spellbookFramework for rapid development and reusable of security tools
Stars: ✭ 67 (+86.11%)
CTFCTF binary exploit code
Stars: ✭ 37 (+2.78%)
preprocessyPython package for Customizable Data Preprocessing Pipelines
Stars: ✭ 34 (-5.56%)