febinrev

febiNJ's starred repositories

Damn-Vulnerable-GraphQL-Application

Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.

Language:JavaScriptMIT146000

avet

AntiVirus Evasion Tool

Language:ShellGPL-3.0162500

get-wifi-password

Simple shell script to grab saved wifi passwords on Windows

Language:ShellMIT600

MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

445600

VCG

VisualCodeGrepper - Code security scanning tool.

Language:Visual Basic .NETGPL-3.051800

Azure-Red-Team

Azure Security Resources and Notes

Language:PowerShell142200

gophish

Open-Source Phishing Toolkit

Language:GoNOASSERTION1091100

adversarial-prompts

Curation of prompts that are known to be adversarial to large language models

MIT16800

espocrm

EspoCRM – Open Source CRM Application

Language:PHPAGPL-3.0159700

SharpADWS

Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).

Language:C#40100

PMapper

A tool for quickly evaluating IAM permissions in AWS.

Language:PythonAGPL-3.05500

Bypass-authentication-GitHub-Enterprise-Server

The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES without requiring pre-authentication. The vulnerability affects all GHES versions prior to 3.13.0.

4600

binder-trace

Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".

Language:PythonMIT51800

heap-gym

Practice Binaries for learning basic Linux GLIBC Heap Exploitation techniques.

Language:C400

PowerJoker

PowerJoker is a Dynamic PowerShell Reverse-Shell Generator; Unique Payloads with different results on Each Execution.

Language:PythonMIT2800

fudshell

An efficent Script To Generate FUD Persistent Reverse Shell For Red Teaming. Don't Upload Generated Stub On Virustotal

Language:Python6900

dropper

Project that generates Malicious Office Macro Enabled Dropper for DLL SideLoading and Embed it in Lnk file to bypass MOTW

Language:PythonMIT24400

ReServ

A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.

Language:Python5700

windows-coerced-authentication-methods

A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

Language:Python47100

php_filter_chain_generator

Language:Python59200

OffSec-Reporting

Offensive Security OSCP, OSWP, OSEP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA Exam and Lab Reporting / Note-Taking Tool

61400

Leaked-Credentials

how to look for Leaked Credentials !

57400

Villain

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

Language:PythonNOASSERTION361900