caoimhinp

DropboxC2C

DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.

awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

Concierge

Currently: Exploit scripts for HID EVO door controllers--- Future: Exploit framework for Physical Access Control/Monitoring Systems

CrackMapExec

A swiss army knife for pentesting Windows/Active Directory environments

CVE-2017-0199

Exploit toolkit CVE-2017-0199 - v3.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious (Obfuscated) RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

EQGRP

Decrypted content of eqgrp-auction-file.tar.xz

github-ESP_RFID_Thief

This is a port/remix of the Tastic RFID Thief to the Adafruit Feather HUZZAH, an ESP12E chip from the ESP8266 family. It adds WiFi capability and on board logging making the build nearly plug and play.

Java-Deserialization-Exploit

jexboss

JexBoss: Jboss verify and EXploitation Tool

kekeo

A little toolbox to play with Microsoft Kerberos in C

luckystrike

A PowerShell based utility for the creation of malicious Office macro documents.

medusa

An open source interactive disassembler

nishang

Nishang - PowerShell for penetration testing and offensive security.

novahot

A webshell framework for penetration testers.

nsa-rules

Password cracking rules and masks for hashcat that I generated from cracked passwords.

osint_tools_security_auditing

osint_tools_security_auditing

poisontap

Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.

PowerShell-2

PowerShell for every system!

Probable-Wordlists

Wordlists sorted by probability originally created for password generation and testing

PSAttack

A portable console aimed at making pentesting with PowerShell a little easier.

Publics

Various tools

pwnat

pwnat punches holes in firewalls and NATs allowing any numbers of clients behind NATs to directly connect to a server behind a different NAT using a newly developed technique with no 3rd party, port forwarding, DMZ or spoofing

redsnarf

A tool for Red Teaming Windows environments

shadowbrokers-exploits

Mirror of Shadowbrokers release from https://steemit.com/shadowbrokers/@theshadowbrokers/lost-in-translation

Social-Engineering-Payloads

Collection of generic social engineering payloads

ubuntu-apport-exploitation

This project contains a PoC and exploit generator for a code execution bug in Ubuntu's Apport crash reporter

usbdriveby

USBdriveby exploits the trust of USB devices by emulating an HID keyboard and mouse, installing a firewall-evading backdoor, and rerouting DNS within seconds of plugging it in

vcsmap

vcsmap is a plugin-based tool to scan public version control systems for sensitive information.

wePWNise

WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application control and exploit mitigation software.

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.