evitax

weblogicScanner

weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-3252、CVE-2019-2618、CVE-2019-2725、CVE-2019-2729、CVE-2019-2890、CVE-2020-2551、CVE-2020-14750、CVE-2020-14882、CVE-2020-14883

msf-autoshell

Feed the tool a .nessus file and it will automatically get you MSF shell

Tasmota

Alternative firmware for ESP8266 and ESP32 based devices with easy configuration using webUI, OTA updates, automation using timers or rules, expandability and entirely local control over MQTT, HTTP, Serial or KNX. Full documentation at

training_scrips

Tool used in training

Meerkat

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

django-DefectDojo

DevSecOps, ASPM, Vulnerability Management. All on one platform.

Hystrix

Hystrix is a latency and fault tolerance library designed to isolate points of access to remote systems, services and 3rd party libraries, stop cascading failure and enable resilience in complex distributed systems where failure is inevitable.

WinPwnage

UAC bypass, Elevate, Persistence methods

PythonScapyDot11_TheBook

Repository with all the examples used in the Book Python Scapy Dot11

DetectPasswordViaNTLMInFlow

Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test passwords

MakeMeEnterpriseAdmin

GidsApplet

Generic Identity Device Specification Applet

NTLMInjector

In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)

SmbScanner

Smb Scanner from PingCastle

vmware_guest_auth_bypass

Proof of concept of VMSA-2017-0012

monkey

Infection Monkey - An open-source adversary emulation platform

VirusTotalTools

Misc Tools for Virus Total Interaction

MalPipe

Malware/IOC ingestion and processing engine

web

Pi-hole Dashboard for stats and more

pi-hole

A black hole for Internet advertisements

GitHubRankingsSpain

:arrow_up: Rankings with the most active GitHub users in Spain (sorted by public contributions) :es:

janitor-bot

project to monitor a local network

cubiertos-para-twitter

herramientas para que twitter sea más fácil de digerir

metasploit-framework

Metasploit Framework

CBM

Car Backdoor Maker

ctfr

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

nmap_vscan

nmap service and application version detection (without nmap installation)

pentest-wiki

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

luckystrike

A PowerShell based utility for the creation of malicious Office macro documents.

page_brute

Page File analysis tools.