-
php_filter_chain_generator
No description.
Python ★ 1.1k 3y agoExplain → -
HopLa
HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
Java ★ 836 3mo agoExplain → -
frinet
Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.
Rust ★ 617 1mo agoExplain → -
GPOddity
The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
Python ★ 370 7mo agoExplain → -
nord-stream
Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
Python ★ 367 7d agoExplain → -
gpoParser
gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory environment.
Python ★ 366 2mo agoExplain → -
eos
Enemies Of Symfony - Debug mode Symfony looter
Python ★ 360 1y agoExplain → -
php_filter_chains_oracle_exploit
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
Python ★ 335 2y agoExplain → -
GroupPolicyBackdoor
Group Policy Objects manipulation and exploitation framework
Python ★ 314 7mo agoExplain → -
SCCMSecrets
SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
Python ★ 273 7mo agoExplain → -
DCOMIllusionist
DCOM in memory and fileless lateral movement techniques through .Net deserilization
C# ★ 272 25d agoExplain → -
octoscan
Octoscan is a static vulnerability scanner for GitHub action workflows.
Go ★ 271 3mo agoExplain → -
Mindmaps
Azure mindmap for penetration tests
★ 233 2y agoExplain → -
Windows-kernel-SegmentHeap-Aligned-Chunk-Confusion
PoC exploiting Aligned Chunk Confusion on Windows kernel Segment Heap
C ★ 211 6y agoExplain → -
bip
No description.
Python ★ 204 4y agoExplain → -
lumina_server
Local server for IDA Lumina feature
Python ★ 193 5y agoExplain → -
QLinspector
Finding Java/C# gadget chains with CodeQL
C# ★ 188 25d agoExplain → -
ntdissector
No description.
Python ★ 183 3mo agoExplain → -
Invoke-RunAsWithCert
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
PowerShell ★ 178 2y agoExplain → -
shh
Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
Rust ★ 174 1mo agoExplain → -
DLHell
Local & remote Windows DLL Proxying
Python ★ 173 2y agoExplain → -
CVE-2023-35001
Pwn2Own Vancouver 2023 Ubuntu LPE exploit
Go ★ 169 2y agoExplain → -
OUned
The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
Python ★ 160 8mo agoExplain → -
Livepyre
A tool designed to exploit CVE-2025-54068 and Remote Command Execution if the APP_KEY of the Livewire project is known.
Python ★ 148 1d agoExplain → -
laravel-crypto-killer
A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
Python ★ 145 6mo agoExplain → -
captaincredz
CaptainCredz is a modular and discreet password-spraying tool.
Python ★ 139 12h agoExplain → -
IPSpinner
IPSpinner works as a local proxy that redirects requests through external services.
Go ★ 123 1y agoExplain → -
rulesfinder
Machine-learn password mangling rules
Rust ★ 116 2y agoExplain → -
dotNIET
No description.
Python ★ 112 5y agoExplain → -
Prox-Ez
No description.
Python ★ 110 1mo agoExplain → -
mofos
Virtual machines manipulation framework
Python ★ 107 4mo agoExplain → -
ica2tcp
A SOCKS proxy for Citrix.
C ★ 101 3y agoExplain → -
bbs
bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based on the request's target. Routing can be configured with a PAC script (if built with PAC support), or through a JSON file.
Go ★ 97 1d agoExplain → -
CVE-2024-43468
No description.
Python ★ 96 3mo agoExplain → -
DepFuzzer
No description.
Python ★ 93 7mo agoExplain → -
samsung-q60t-exploit
No description.
JavaScript ★ 88 4y agoExplain → -
CVE-2024-45409
Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit
Python ★ 83 1y agoExplain → -
windows_kernel_shadow_stack
Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
C ★ 75 1y agoExplain → -
vmx_intrinsics
VMX intrinsics plugin for Hex-Rays decompiler
Python ★ 75 6y agoExplain → -
AADOutsider-py ▣
Python3 rewrite of AsOutsider features of AADInternals
Python ★ 62 11mo agoExplain → -
shannon-dbg
Debugger for the Shannon Baseband
C ★ 60 6y agoExplain → -
PS4-webkit-exploit-6.XX
Webkit exploit that give arbitrary R/W on 6.XX PS4 firmwares
JavaScript ★ 60 5y agoExplain → -
kcmdump
Dump Kerberos tickets from the KCM database of SSSD
Python ★ 59 6mo agoExplain → -
Radmin3-Password-Cracker
Radmin Server 3 credentials dumper/cracker
C ★ 56 4y agoExplain → -
keebcap
Win32 keylogger that supports all (non-ime using) languages correctly
Python ★ 54 2y agoExplain → -
twoface
"Two-Face" Rust binary on Linux
Rust ★ 52 8mo agoExplain → -
objc-helper
IDA helper plugin to reverse engineer Objective-C code
Python ★ 48 1y agoExplain → -
burp-jq
Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
Java ★ 48 5y agoExplain → -
CVE-2021-40539
Exploitation code for CVE-2021-40539
Python ★ 48 4y agoExplain → -
io_uring_scanner
io_uring based network scanner written in Rust
Rust ★ 46 8mo agoExplain → -
astrolock
A purposely vulnerable application in order to demonstrate PHP payload smuggling techniques for PNG files.
PHP ★ 44 3y agoExplain → -
thats_no_pipe
Windows named pipe hooking toolkit
TypeScript ★ 44 3mo agoExplain → -
CVE-2021-27246_Pwn2Own2020
No description.
Python ★ 43 5y agoExplain → -
CVE-2021-3492
PoC for CVE-2021-3492 used at Pwn2Own 2021
C ★ 42 5y agoExplain → -
CVE-2021-1782
No description.
C ★ 40 5y agoExplain → -
CVE-2020-27950
CVE-2020-27950 exploit
C ★ 34 5y agoExplain → -
sharker
A simple, reliable and reasonably fast network capture analyzer.
Python ★ 33 2mo agoExplain → -
AMSI-Bypass
Lists of AMSI triggers (VBA, JScript / VBScript)
★ 33 7y agoExplain → -
Weggli_rules_SSTIC2023
No description.
★ 32 3y agoExplain → -
gh-hijack-runner
A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
Python ★ 30 1y agoExplain → -
sccmsqlclient
No description.
Python ★ 30 1mo agoExplain → -
Exim-CVE-2019-15846
PoC materials to exploit CVE-2019-15846
Python ★ 30 6y agoExplain → -
laravel_cookie_killer
No description.
Python ★ 29 3y agoExplain → -
adb_client
Rust ADB client - Mirror of https://github.com/cocool97/adb_client
Rust ★ 29 1y agoExplain → -
canon-mf644
No description.
Python ★ 28 3y agoExplain → -
CTF-Write-ups
Some CTF Write-ups
Python ★ 27 4y agoExplain → -
bhyve
No description.
C ★ 27 3y agoExplain → -
extloader
A chromium extension exploitation toolkit
Python ★ 27 9mo agoExplain → -
appledb_rs
Apple artifacts database - Mirror of https://github.com/cocool97/appledb_rs
Rust ★ 27 9mo agoExplain → -
action-octoscan
📦 :octocat: A GitHub Action that performs a security scan of your GitHub Actions.
Shell ★ 26 1y agoExplain → -
pcapan
A pcap capture analysis helper
Rust ★ 25 2y agoExplain → -
yealink_tools
Reverse engineering scripts designed for extracting Yealink VOIP upgrade files
Python ★ 25 6y agoExplain → -
synodecrypt
A tool to decrypt all Synology encrypted archives (SPK, PAT, ...)
Python ★ 21 1y agoExplain → -
EIPP
Entra ID Password Protection Banned Password Lists
C# ★ 20 2y agoExplain → -
pike-agent
Experimental Linux strace LLM agent
Python ★ 20 2mo agoExplain → -
synacktiv-rules
Public repository of Sigma and YARA rules created by Synacktiv
YARA ★ 20 9mo agoExplain → -
CacheData_decrypt
A simple Toolkit to BF and decrypt Windows EntraId CacheData
Python ★ 20 2y agoExplain → -
canon-tools
Tools used for decrypting Canon printers firmwares
Python ★ 18 5y agoExplain → -
CcmMessagingBackdoor
No description.
C# ★ 18 1y agoExplain → -
toy-wasm-symbexp
A toy symbolic execution engine, supporting the blog article ...
Haskell ★ 18 4y agoExplain → -
Arlo
Arlo file format helper
Python ★ 17 2y agoExplain → -
CVE-2023-32413
Exploit code for CVE-2023-42914 / pwn2own Vancouver 2023
C ★ 16 1y agoExplain → -
mojarragadget
No description.
Java ★ 15 4y agoExplain → -
kcmapper
KcMapper is a security auditing tool for Keycloak. It exports your Keycloak configuration (realms, clients, users, roles, etc.) into a Neo4j graph database. This representation enables complex relationship analysis and security auditing through a built-in interactive web UI with pre-defined queries.
Python ★ 14 5mo agoExplain → -
dicozorus
A tool to generate and maintain wordlists for Web fuzzing.
Python ★ 13 4d agoExplain → -
ROADtools ⑂
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Python ★ 13 1y agoExplain → -
CVE-2020-9289
Decrypt reversible secrets encrypted using the default hardcoded key related to CVE-2020-9289 on FortiAnalyzer/FortiManager (the only difference with CVE-2019-6693 is the encryption routine).
Python ★ 11 3y agoExplain → -
Exim-CVE-2018-6789
PoC materials to exploit CVE-2018-6789
C ★ 10 6y agoExplain → -
CVE-2025-47227_CVE-2025-47228
ScriptCase Pre-Authenticated Remote Command Execution exploitation script (CVE-2025-47227, CVE-2025-47228).
Python ★ 10 1y agoExplain → -
krustyloader-analysis
KrustyLoader Analysis
YARA ★ 10 2y agoExplain → -
zom
Zed Offline Mirror
CSS ★ 9 3mo agoExplain → -
nmap-farewell
Automated Network Security with Rust: Detecting and Blocking Port Scanners
Rust ★ 9 1y agoExplain → -
mobileiron-exploit
No description.
Python ★ 9 2y agoExplain → -
CaptainHook
No description.
Java ★ 9 4y agoExplain → -
itsm-exploit
Ivanti Neurons for ITSM (On Premise) exploits
Python ★ 8 8mo agoExplain → -
SCCMVersionGuesser
No description.
Python ★ 8 1mo agoExplain → -
bissap
A new open-source tool to quickly audit SAP permissions.
C++ ★ 8 3mo agoExplain → -
impacket ⑂
Impacket is a collection of Python classes for working with network protocols.
★ 7 18d agoExplain → -
Metamorph
A command-line utility for Windows written in C that creates and configures persistent Event Tracing for Windows (ETW) AutoLogger sessions.
C ★ 7 1mo agoExplain → -
CVE-2025-47178
No description.
Python ★ 6 11mo agoExplain → -
Netgear_Pwn2Own2021
Exploit used against the Netgear R6700v3 during Pwn2Own Austin 2021
Python ★ 6 4y agoExplain → -
forensic-msvpn
This repository contains Velociraptor artifact and Chainsaw rules to help detect Microsoft Remote Access VPN activity
Python ★ 6 2y agoExplain → -
CVE-2023-42791_CVE-2024-23666
Exploitations scripts for CVE-2023-42791 and CVE-2024-23666.
Python ★ 6 1y agoExplain → -
CVE-2019-8942
WordPress crop-image exploitation
Python ★ 4 7y agoExplain → -
sap_logon_ticket
General toolkit related to SAP's SSO mechanism : the Logon Tickets
Python ★ 3 3mo agoExplain → -
ysoserial ⑂
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Java ★ 3 2y agoExplain → -
nwn-exploit
Neverwinter Nights : Enhanced edition exploit
JavaScript ★ 3 1y agoExplain → -
sccm_sql_backdoor
No description.
Python ★ 2 24d agoExplain → -
lehack-2026-challenge
Sources of Synacktiv's challenge for leHack 2026
Nix ★ 2 15d agoExplain → -
CVE-2025-59213
No description.
Python ★ 2 1mo agoExplain → -
hexalocker-analysis
HexaLocker ransomware analysis
YARA ★ 2 1y agoExplain → -
gpblib
Common library for tools implementing GPO attack vectors
Python ★ 2 8mo agoExplain → -
CVE-2025-59712_CVE-2025-59713
Snipe-IT PoC exploit for CVE-2025-59712 and CVE-2025-59713
Python ★ 2 9mo agoExplain → -
ldeep ⑂
In-depth ldap enumeration utility
★ 1 1mo agoExplain → -
nounours
Nounours is a tool designed to test APP_KEYs at scale on Laravel applications.
Rust ★ 1 1mo agoExplain → -
veeam-velociraptor
Proof-of-concept Velociraptor artifacts pack to showcase a remote Veeam forensics pipeline.
★ 1 1y agoExplain → -
recon-ng-marketplace ⑂
Official module repository for the Recon-ng Framework.
Python ★ 1 7y agoExplain → -
dissect.esedb ⑂
A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.
Python ★ 1 2y agoExplain → -
pridelocker-analysis
This repository contains a IDA Python script to recover PrideLocker ESX encryptor strings and a YARA rule
Python ★ 1 3y agoExplain → -
phpggc ⑂
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
PHP ★ 1 6y agoExplain → -
CVE-2025-55320
No description.
Python ★ 0 3mo agoExplain → -
mitm6 ⑂
pwning IPv4 via IPv6
★ 0 2y agoExplain → -
statx ⑂
This program uses the statx system call to return file status (extended) in the body file format.
★ 0 10mo agoExplain → -
krbrelayx ⑂
Kerberos unconstrained delegation abuse toolkit
Python ★ 0 1y agoExplain → -
garble ⑂
Obfuscate Go builds
Go ★ 0 1y agoExplain → -
john ⑂
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
★ 0 5y agoExplain → -
BFS_challenge_2019
Solution for BFS Ekoparty challenge 2019
Python ★ 0 6y agoExplain →
No repos match these filters.
More creators on gitmyhub
sindresorhus bradtraversy JakeWharton lucidrains rafaballerini