James Fell's starred repositories
iGoat-Swift
OWASP iGoat (Swift) - A Damn Vulnerable Swift Application for iOS
dumpdecrypted
Dumps decrypted mach-o files from encrypted iPhone applications from memory to disk. This tool is necessary for security researchers to be able to look under the hood of encryption.
ssl-kill-switch2
Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and macOS applications.
password_cracking_rules
One rule to crack all passwords. or atleast we hope so.
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
AndroidEmbedIT
A quick and dirty python script to embed a Metasploit generated APK file into another APK for fun.
zigdiggity
A ZigBee hacking toolkit by Bishop Fox
modbus-cli
Modbus command line utility
sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA and developers test SIP-based VoIP systems and applications. This toolset is useful in simulating VoIP hacking attacks against PBX systems especially through identification, scanning, extension enumeration and password cracking.
AggressorScripts
Aggressor scripts for use with Cobalt Strike 3.0+
MalleableC2Profiles
Malleable C2 profiles for Cobalt Strike
Invoke-ZeroLogon
Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls on their behalf.
Invoke-PSImage
Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute