fbkch

fbkch's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT60978 18420

ghidra

Ghidra is a software reverse engineering (SRE) framework

Language:JavaApache-2.051381 1032 4920

Deep-Learning-Papers-Reading-Roadmap

Deep Learning papers reading roadmap for anyone who are eager to learn this amazing tech!

Language:Python38241 2096 55

mimikatz

A little tool to play with Windows security

Language:C19391 916 383

Mobile-Security-Framework-MobSF

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Language:JavaScriptGPL-3.017332 578 1486

impacket

Impacket is a collection of Python classes for working with network protocols.

Language:PythonNOASSERTION13472 374 961

pwntools

CTF framework and exploit development library

Language:PythonNOASSERTION12065 288 1056

PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Language:PowerShellNOASSERTION11883 781 188

owasp-mastg

The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).

Language:PythonCC-BY-SA-4.011725 425 1098

BloodHound

Six Degrees of Domain Admin

Language:PowerShellGPL-3.09847 376 510

CrackMapExec

A swiss army knife for pentesting networks

Language:PythonBSD-2-Clause8416 306 558

Empire

Empire is a PowerShell and Python post-exploitation agent.

Language:PowerShellBSD-3-Clause7439 489 781

LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks

Language:ShellMIT7003 195 29

Rubeus

Trying to tame the three-headed dog.

Language:C#NOASSERTION4094 83 76

phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

Language:PHPApache-2.03218 65 60

pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time

Language:C#NOASSERTION2325 67 209

EvilClippy

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

Language:C#GPL-3.02120 91 46

PrintSpoofer

Abusing impersonation privileges through the "Printer Bug"

Language:C1865 19 9

SharpShooter

Payload Generation Framework

Language:VBABSD-3-Clause1791 58 27

GraphQLmap

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Language:PythonMIT1378 21 29

SharpUp

SharpUp is a C# port of various PowerUp functionality.

Language:C#NOASSERTION1252 44 5

Powermad

PowerShell MachineAccountQuota and DNS exploit tools

Language:PowerShellBSD-3-Clause1225 31 11

krbrelayx

Kerberos unconstrained delegation abuse toolkit

Language:PythonMIT1131 15 22

muraena

Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.

Language:GoBSD-3-Clause923 42 79

Ten-lines-or-less

Python scripts that are short but useful or interesting

Language:PythonApache-2.0589 29 4

EXCELntDonut

Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.

Language:PythonGPL-3.0499 20 11

HostRecon

This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users, and domain information. It does not use any 'net', 'ipconfig', 'whoami', 'netstat', or other system commands to help avoid detection.

Language:PowerShellMIT429 32 3