Octo Leap's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
libc-database
Build a database of libc offsets to simplify exploitation
investigations
Indicators from Amnesty International's investigations
microsocks
tiny, portable SOCKS5 server with very moderate resource usage
kubesploit
Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
JNDI-Exploit-Kit
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)
random_c2_profile
Cobalt Strike random C2 Profile generator
pwnwiki.github.io
PwnWiki - The notes section of the pentesters mind.
experiments
Expriments
execution-trace-viewer
Tool for viewing and analyzing execution traces
secml_malware
Create adversarial attacks against machine learning Windows malware detectors
Dendrobate
Managed code hooking template.
CVE-2021-1732
CVE-2021-1732 poc & exp; tested on 20H2
elegant-bouncer
ELEGANTBOUNCER is a detection tool for file-based mobile exploits.
android-inject-hook
android-inject-hook