328 - Giters

328's starred repositories

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Language:GoBSD-3-Clause10402 293 859

graphql-voyager

🛰️ Represent any GraphQL API as an interactive graph

Language:TypeScriptMIT7709 96 200

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Language:JavaMIT7544 215 102

fbctf

Platform to host Capture the Flag competitions

Language:HackNOASSERTION6526 393 441

staticrypt

Password protect a static HTML page, decrypted in-browser in JS with no dependency. No server logic needed.

Language:HTMLMIT5826 49 83

feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

Language:RustMIT5627 52 285

InfoSec-Black-Friday

All the deals for InfoSec related software/tools this Black Friday

2860 239 28

The-Hackers-Hardware-Toolkit

The best hacker's gadgets for Red Team pentesters and security researchers.

MPL-2.02058 113 15

cicd-goat

A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.

Language:PythonApache-2.01870 32 26

demiguise

HTA encryption tool for RedTeams

Language:PythonAGPL-3.01361 54 11

smokescreen

A simple HTTP proxy that fogs over naughty URLs

Language:GoMIT1052 79 24

reverse-ssh

Statically-linked ssh server with reverse shell functionality for CTFs and such

Language:GoGPL-3.0899 11 18

red-kube

Red Team K8S Adversary Emulation Based on kubectl

Language:PythonApache-2.0819 48 4

CVE-2018-15473-Exploit

Exploit written in Python for CVE-2018-15473 with threading and export formats

Language:Python516 21 13

graphql-pokemon

Get information of a Pokémon with GraphQL!

Language:JavaScript501 7 11

creddump7

Language:PythonGPL-3.0375 27 3

rayder

A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows

Language:GoMIT269 6 8

disasm.pro

A realtime assembler/disassembler (formerly known as disasm.ninja)

Language:JavaScript265 9 10

windows-pentest

Windows Pentest Scripts

Language:PowerShell228 80

alfred-ip-address-workflow

Alfred 5 workflow for getting your local and external IP addresses

MIT196 3 9

HG8045Q

Pwning the Nuro issued Huawei HG8045Q

186 17 15

bof-collection

Collection of Beacon Object Files (BOF) for Cobalt Strike

Language:C++169 3 3

graphql-disable-introspection

Disable Introspection in GraphQL-JS with a simple validation rule

Language:JavaScriptMIT141 5 3

seclablist

情報セキュリティ関連の大学研究室Webサイトをまとめてみた

133 8 23

PMActivities

71 20 1

AzRedTeamEnumScript

Azure AD RedTeam Full Enumeration Script used to query all aspects of your target Azure tenant.

Language:PowerShell69 50

Azur3Alph4

Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved) position.

Language:PowerShellBSD-3-Clause63 50

doc

RISKEN is a monitoring tool for visualizing security risks.

Language:MakefileMIT20 2 2

angular-cognito-s3-file-uploader

Language:TypeScript4 30

macCookies

macCookies decrypt cookies stored in macOS browsers for pentesters.

Language:GoMIT3 10