TartarusLabs

James Fell's starred repositories

OneRuleToRuleThemStill

A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule

Expeditus

Expeditus is a loader that executes shellcode on a target Windows system. It combines several offensive techniques in order to attempt to do this with some level of stealth.

Language:C#GPL-3.01100

java-deserialization-exploits

A collection of curated Java Deserialization Exploits

Language:Python58900

ScareCrow

ScareCrow - Payload creation framework designed around EDR bypass.

Language:Go268400

Cronos-Rootkit

Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.

Language:C++MIT81700

CACTUSTORCH

CACTUSTORCH: Payload Generation for Adversary Simulations

Language:Visual Basic7500

DarkLoadLibrary

LoadLibrary for offensive operations

Language:C102100

DotNetToJScript

A tool to create a JScript file which loads a .NET v2 assembly from memory.

Language:C#GPL-3.0120300

Crypto-Tricks

This repo is a collection of proof-of-concepts, examples, essays and experiments in cryptography, cryptanalysis, steganography and covert channels that I originally wrote in 2015.

Language:PythonGPL-3.0600

Cobra

Source Code Security Audit (源代码安全审计)

Language:PythonMIT312100

Burp-Request-Signer

Burp extension to sign Payment Gateway API requests by calculating a variation of a HMAC-SHA512 and adding it to the request.

Language:PythonGPL-3.0400

windows-syscalls

Windows System Call Tables (NT/2000/XP/2003/Vista/7/8/10/11)

Language:HTML203400

CyberChef

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Language:JavaScriptApache-2.02708000

Coyote

Coyote is a standalone C# post-exploitation implant for maintaining access to compromised Windows infrastructure during red team engagements using DNS tunneling.

Language:C#GPL-3.01900

nodejsscan

nodejsscan is a static security code scanner for Node.js applications.

Language:CSSGPL-3.0235300

Veil

Veil 3.1.X (Check version info in Veil at runtime)

Language:PythonGPL-3.0391900

GraphQLmap

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Language:PythonMIT132200

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT5794400

apkinfector

Advanced Android AV Evasion Tool Written In Python 3 that can Embed/Bind meterpreter APK to any Legitimate APK

Language:Python27600

Android-InsecureBankv2

Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities

Language:JavaMIT121200

afl-cov

Produce code coverage results with gcov from afl-fuzz test cases

Language:PythonGPL-2.046200

A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.

CC0-1.0516500

process_doppelganging

My implementation of enSilo's Process Doppelganging (PE injection technique)

Language:C56700

phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

Language:PHPApache-2.0310400

Generic-University

Vulnerable API

Language:PHP37400

openvas-scanner

This repository contains the scanner component for Greenbone Community Edition.

Language:RustGPL-2.0300900

kiterunner

Contextual Content Discovery Tool

Language:GoAGPL-3.0249600

osmedeus-base

Build your own reconnaissance system with Osmedeus Next Generation

Language:ShellMIT17200