YSGoh

followers

following

stars

Y's starred repositories

NewPipe

A libre lightweight streaming front-end for Android.

Language:JavaGPL-3.029055 596 8686

winutil

Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and Updates

Language:PowerShellMIT13619 163 1142

ModSecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.

Language:C++Apache-2.07234 388 2297

jwt_tool

:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

Language:PythonGPL-3.05072 63 73

Invoke-PSImage

Encodes a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

Language:PowerShellMIT2140 101 19

APIKit

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

Language:JavaGPL-3.01747 19 61

byp4xx

40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

Language:Go1564 33 22

bypass-403

A simple script just made for self use for bypassing 403

Language:Shell1545 23 9

evilgophish

evilginx3 + gophish

Language:GoMIT1523 35 8

vscan

开源、轻量、快速、跨平台的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)

Language:GoBSD-3-Clause1379 29 40

Mangle

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

Language:GoMIT1142 27 9

Shhhloader

Syscall Shellcode Loader (Work in Progress)

Language:PythonGPL-3.01075 25 34

TangledWinExec

PoCs and tools for investigation of Windows process execution techniques

Language:C#BSD-3-Clause858 21 3

gargoyle

A memory scanning evasion technique

Language:C++AGPL-3.0805 28 5

NetLoader

Loads any C# binary in mem, patching AMSI + ETW.

Language:C#766 20 4

AzureGoat

AzureGoat : A Damn Vulnerable Azure Infrastructure

Language:PythonMIT722 11 8

cdncheck

A utility to detect various technology for a given IP address.

Language:GoMIT721 21 36

SecurityList

A list for Web Security and Code Audit

RustHound

Active Directory data collector for BloodHound written in Rust. 🦀

Language:RustMIT660 8 11

PyFuscation

Obfuscate powershell scripts by replacing Function names, Variables and Parameters.

Language:PythonBSD-3-Clause509 12 5

mx-takeover

mx-takeover focuses DNS MX records and detects misconfigured MX records.

Language:GoMIT329 4 8

code-inspector

JavaWeb漏洞审计工具，构建方法调用链并模拟栈帧进行分析

Language:JavaMIT308 6 9

KillDefenderBOF

Beacon Object File PoC implementation of KillDefender

Language:C209 5 2

DNS_Tunneling

DNS Tunneling using powershell to download and execute a payload. Works in CLM.

Language:Python207 9 1

DCMB

Dont Call Me Back - Dynamic kernel callback resolver. Scan kernel callbacks in your system in a matter of seconds!

Language:C204 6 2

KDStab

BOF combination of KillDefender and Backstab

Language:CMIT155 50

WTSRM2

Language:C++152 2 1

azbelt

AAD related enumeration in Nim

Language:NimMIT125 50

Cohab_Processes

A small Aggressor script to help Red Teams identify foreign processes on a host machine

Language:C80 50