phackt
Follow
-
-
webapp Public
Secure Java WebApp (Java 8, Spring Security, XSS, CSRF, CORS, HSTS, ...)
-
Crypto-Honeypot-Detector Public
Forked from malvaphe/Crypto_Honeypot_DetectorThe project aims to identify crypto honeypots in many chains.
JavaScript UpdatedSep 27, 2022 -
gateio-crypto-trading-bot-binance-announcements-new-coins Public
Forked from CyberPunkMetalHead/gateio-crypto-trading-bot-binance-announcements-new-coinsThis is a crypto trading bot that scans the Binance Annoucements page for new coins, and places trades on Gateio
Python MIT License UpdatedFeb 8, 2022 -
Invoke-Recon Public
"Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' lab from pentesteracademy.
-
-
wptsextensions.dll Public
WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.
-
-
labs Public
Forked from commial/labsLabs setup for tests & experimentations
PowerShell UpdatedJun 17, 2021 -
SessionGopher Public
Forked from Arvanaghi/SessionGopherSessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be r…
-
-
commando-vm Public
Forked from mandiant/commando-vmComplete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]
PowerShell Apache License 2.0 UpdatedMar 17, 2021 -
PowerSploit Public
Forked from PowerShellMafia/PowerSploitPowerSploit - A PowerShell Post-Exploitation Framework
-
CORScanner Public
Forked from chenjj/CORScannerFast CORS misconfiguration vulnerabilities scanner🍻
Python MIT License UpdatedJan 19, 2021 -
Amass Public
Forked from owasp-amass/amassIn-depth Attack Surface Mapping and Asset Discovery
Go Other UpdatedDec 27, 2020 -
stager.dll Public
Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/
-
PowerUpSQL Public
Forked from NetSPI/PowerUpSQLPowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
PowerShell Other UpdatedJul 2, 2020 -
mitm Public
Repository housing my 'man in the middle' project dealing with mitmproxy (Defeating HTTPS/HSTS, JS injection, DNS spoofing)
-
truffleHog Public
Forked from trufflesecurity/trufflehogSearches through git repositories for high entropy strings and secrets, digging deep into commit history
Python GNU General Public License v2.0 UpdatedMay 8, 2020 -
windapsearch Public
Forked from ropnop/windapsearchPython script to enumerate users, groups and computers from a Windows domain through LDAP queries
Python GNU General Public License v3.0 UpdatedApr 28, 2020 -
zimbra_poc Public
Forked from fnmsd/zimbra_pocZimbra XXE+SSRF+UPLOAD Poc
Python UpdatedJun 25, 2019 -
altdns Public
Forked from infosec-au/altdnsGenerates permutations, alterations and mutations of subdomains and then resolves them
Python Apache License 2.0 UpdatedJun 15, 2019 -
-
-
ReconJSON Public
Forked from BountyMachine/ReconJSONRecon.json is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.
UpdatedAug 19, 2018 -
p5-ssl-tools Public
Forked from noxxi/p5-ssl-toolsvarious standalone perl scripts
Perl UpdatedAug 15, 2018 -
Drupalgeddon2 Public
Forked from dreadlocked/Drupalgeddon2Exploit for Drupalgeddon 2 - CVE-2018-7600
Ruby UpdatedJul 18, 2018 -
SecLists Public
Forked from danielmiessler/SecListsSecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strin…
PHP MIT License UpdatedJun 13, 2018 -
puppeteer-examples Public
Forked from checkly/puppeteer-examplesPuppeteer example scripts for running Headless Chrome from Node. Run them at https://puppeteersandbox.com
JavaScript Apache License 2.0 UpdatedMar 27, 2018 -
xsssniper Public
Forked from gbrindisi/xsssniperAn automatic XSS discovery tool