Jrb's repositories
bashacks
A set of functions to increase productivity while hacking with Bash
dploot
DPAPI looting remotely in Python
WALK_WebAssembly_Lure_Krafter
A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims at aiding with initial access during red teams and phishing exercises leveraging WASM smuggling techniques.
Rust-syscall-EDR-evasion
Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust
skill-icons
Showcase your skills on your Github readme or resumé with ease ✨
metasploit-framework
Metasploit Framework
btop
A monitor of resources
inspec
InSpec: Auditing and Testing Framework
blackweb
Domains Blacklist for Squid-Cache
threat-dragon
An open source threat modeling tool from OWASP
Default-Credentials
Default usernames and passwords for various systems (VoIP,IPMI,Oracle).
phoronix-test-suite
The Phoronix Test Suite open-source, cross-platform automated testing/benchmarking software.
openrasp
🔥Open source RASP solution
find-sec-bugs
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
setup-squid-proxy-with-security-best-practice
squid proxy security best practice
uac
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
policy-as-code
GitHub Advanced Security Policy as Code
coreruleset
OWASP CRS (Official Repository)
sysPass
Systems Password Manager
LOLBASline
Baseline a Windows System against LOLBAS
Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
Red-Team-Playbooks
This repository contains cutting-edge open-source security notes and tools that will help you during your Red Team assessments.
SharpVenoma
CSharp reimplementation of Venoma, another C++ Cobalt Strike beacon dropper with custom indirect syscalls execution
sslh
Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)
kunai
Threat-hunting tool for Linux
shellerator
Simple CLI tool for the generation of bind and reverse shells in multiple languages
chiasmodon
Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.
web-check
🕵️♂️ All-in-one OSINT tool for analysing any website