gitcomrade

followers

following

stars

comrade_for_hire's starred repositories

awesome-flipperzero

🐬 A collection of awesome resources for the Flipper Zero device.

CC0-1.017298 6320

ffuf

Fast web fuzzer written in Go

Language:GoMIT11675 159 496

sliver

Adversary Emulation Framework

Language:GoGPL-3.07800 141 700

unredacter

Never ever ever use pixelation as a redaction technique

Language:TypeScriptGPL-3.07602 67 28

rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

Language:PythonGPL-3.07106 144 774

zmap

ZMap is a fast single packet network scanner designed for Internet-wide network surveys.

Language:CApache-2.05306 234 490

fuzz.txt

Potentially dangerous files

WTFPL2808 85 15

BITB

Browser In The Browser (BITB) Templates

Language:JavaScript2739 560

Freeze

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Language:GoMIT1386 29 14

CloakQuest3r

Uncover the true IP address of websites safeguarded by Cloudflare & Others

Language:PythonMIT1143 11 6

TeamFiltration

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Language:C#GPL-3.0996 11 38

SSRFire

An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects

Language:Shell896 25 6

RedWarden

Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation

Language:PythonGPL-3.0874 21 21

EvilnoVNC

Ready to go Phishing Platform

Language:JavaScriptGPL-3.0728 16 30

StalkPhish

StalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.

Language:PythonAGPL-3.0610 27 38

Nemesis

An offensive data enrichment pipeline

Language:PythonNOASSERTION550 9 9

C2IntelFeeds

Automatically created C2 Feeds

Language:REXXNOASSERTION453 30 15

power-pwn

An offensive and defensive security toolset for Microsoft 365 Power Platform

Language:PythonMIT433 8 21

RITM

Roast in the Middle

Language:Python260 10

TLS-Scanner

The TLS-Scanner Module from TLS-Attacker

Language:JavaNOASSERTION259 29 40

SharpGmailC2

Our Friendly Gmail will act as Server and implant will exfiltrate data via smtp and will read commands from C2 (Gmail) via imap protocol

Language:C#MIT254 9 2

what_is_this_c2

For all these times you're asking yourself "what is this panel again?"

warcannon

High speed/Low cost CommonCrawl RegExp in Node.js

Language:JavaScriptNOASSERTION239 3 8

RogueSliver

A suite of tools to disrupt campaigns using the Sliver C2 framework.

Language:Python233 3 1

dastardly-github-action

Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.

Language:Dockerfile222 100

gitlab-version-nse

Nmap script to guess* a GitLab version.

Language:PythonApache-2.0191 3 1

attack-surface-framework

Tool to discover external and internal network attack surface

Language:CSSNOASSERTION186 12 8

lzr

LZR quickly detects and fingerprints unexpected services running on unexpected ports.

Language:GoApache-2.0140 10 14

F5-CVE-2022-1388-Exploit

Exploit and Check Script for CVE 2022-1388

Language:Python59 3 3

phish_oauth

POC code to explore phishing attacks using OAuth 2.0 authorization flows, such as the device authorization grant.

Language:PowerShellBSD-3-Clause3200