CYRIL PINEIRO's repositories
attackgen
AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident response scenarios based on user-selected threat actor groups and your organisation's details.
AutoFunkt
Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
commix
Automated All-in-One OS Command Injection Exploitation Tool.
cutter
Free and Open Source Reverse Engineering Platform powered by rizin
Damn-Vulnerable-RESTaurant-API-Game
Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.
de4py
toolkit for python reverse engineering
GOAD
game of active directory
GoogleRecaptchaBypass
Solve Google reCAPTCHA in less than 5 seconds! 🚀
GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
HardHatC2
A C# Command & Control framework
hayabusa
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
ivre
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more! Uses Nmap, Masscan, Zeek, p0f, etc.
lsa-whisperer
Tools for interacting with authentication packages using their individual message protocols
Moriarty
Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.
n8n
Free and source-available fair-code licensed workflow automation tool. Easily automate tasks across different services.
NetExec
The Network Execution Tool
NoArgs
NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into Windows APIs to dynamically manipulate the Windows internals on the go. This allows NoArgs to alter process arguments discreetly.
OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
okta-terrify
Okta Verify and Okta FastPass Abuse Tool
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PowerDecode
PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs code dynamic analysis, extracting malware hosting URLs and checking http response.It can also detect if the malware attempts to inject shellcode into memory.
RexLdr
Rex Shellcode Loader for AV/EDR evasion
SAP-Threat-Modeling
The SAP Threat Modeling Tool is an on-premises open-source web application designed to analyze and visualize connections between SAP systems, helping users identify security risks and vulnerabilities. With features like inputting SAP credentials, scanning for connections, and visualizing the network.
Shoggoth
Shoggoth: Asmjit Based Polymorphic Encryptor
sliver
Adversary Emulation Framework
Supernova
Real fucking shellcode encryptor & obfuscator tool
symbolizer-rs
A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
tracecat
😼 The open source alternative to Tines / Splunk SOAR. Build AI-assisted workflows, orchestrate alerts, and close cases fast.