Gotham Security

Gotham Security's repositories

legion

Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.

Language:PythonGPL-3.01020 43 174

Getting-into-InfoSec-and-Cybersecurity

A shorter, less intimidating list of infosec resources helpful for anyone trying to learn.

528 18 2

main-security-testing-tools

A curated list of network penetration testing tools.

56 60

pyExploitDb

An optimized Python3 library to fetch the most recent exploit-database, create searchable indexes for CVE->EDBID and EDBID -> CVE, and provide methods to perform searches.

Language:PythonGPL-3.028 5 3

karmbian

GoVanguard fork of Armbian with complete Kali 2020 support

Language:ShellGPL-2.023 4 7

pyShodan

Python 3 script for interacting with Shodan API

Language:PythonLGPL-3.019 6 4

Log4jShell_Scanner

Python script to tamper with pages to test for Log4J Shell vulnerability.

Language:PythonGPL-3.013 50

pentest-scripts

List of pentest related scripts edited or created by GoVanguard

Language:Python10 40

pyHaveIBeenPwned

Python library to query HaveIBeenPwned.com with handling for CloudFlare anti-bot.

Language:PythonGPL-2.08 6 2

IP-Blacklist-CSV-Generator

Short multiprocessed Python 3 script that generates CSV files containing blacklisted IP addresses, pulling from firehol/blocklist-ipsets repo

Language:PythonAGPL-3.06 60

SecretScanner

Shell script for performing secret scanning on a directory of files

Language:ShellGPL-3.05 40

AzureSnake

A suite of PowerShell scripts to automate portions of Azure Risk Assessments and Penetration Tests

Language:PowerShellGPL-3.04 20

SecretSearcher

Python re-implementation of the classic SecretScanner shell script

Language:PythonMIT3 4 5

GothamSuperTemplate

A Microsoft Threat modeling template containing stencils, threat types and assessment rules for AWS and Azure

BSD-2-Clause1 20

json-view

This is a javascript library for displaying json data into a DOM.

Language:JavaScriptMIT1 10

linux-build

Rock64 Linux build scripts, tools and instructions

Language:ShellMIT1 10

Log4jShell_Vulnerable_Site

Test site that is intentionally vulnerable to log4jshell

Language:JavaGPL-3.01 40

Parrot-Armbian

Armbian build tools /w ParrotSec OS support

Language:ShellGPL-2.01 20

veracodeIntegration

Veracode integrations

Language:PythonAGPL-3.01 50

wazuh-helm

Wazuh-helm is a helm template for deploying Wazuh

GPL-2.01 40

wordpress-azure-multisite

wordpress for azure marketplace

Language:PHPNOASSERTION1 10

Mystiks

A Python-based, Rust-core secret searching tool

Language:PythonMIT02 1

AstraGlide

Python3 port of the abandoned API fuzzing tool Astra

Language:PythonApache-2.0040

Gotham-Security-Aggregate-Repo

Aggregate repo of tools commonly used by Gotham Security which are not readily accessible via Pypi or Kali mirrors

020

linkedin2username

OSINT Tool: Generate username lists for companies on LinkedIn

Language:PythonMIT010

log4jshell-pdf

The purpose of this project is to demonstrate the Log4Shell exploit with Log4J vulnerabilities using PDF as delivery channel

Language:JavaMIT010

Microsoft-Win32-Content-Prep-Tool

A tool to wrap Win32 App and then it can be uploaded to Intune

010

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

Language:PythonGPL-3.0000

SecretScannerTurbo

A C implementation of SecretScanner

Language:CMIT030