Halim Jabbes's repositories
sublist3rV2
Fast subdomains enumeration tool for penetration testers and bug bounty hunters
1.6-C2
Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
chatgptassistantautoblogger
This autoblogger uses the GPT assistant's API to autoblog on ecommerce websites
Checkmate
payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter
codehunter
URL Regex Match Counter is a Python or GO script that counts occurrences of multiple regular expressions in the content of specified URLs. It utilizes requests and re libraries to match and tally regex patterns, providing the count of matches per URL.
CVE-2024-23897
CVE-2024-23897
cve-maker
Tool to find CVEs and Exploits.
Dons
Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript of websites. Its vibrant ASCII art logo welcomes users to a journey where it scans, reveals, and safeguards against potential security breaches.
EDRNoiseMaker
Detect WFP filters blocking EDR communications
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Evilginx3-Phishlets
Learn my systematic process of creating Evilginx Phishlets from scratch: https://www.simplerhacking.com
FlashBrowser
A small browser capable of viewing/displaying pages with embedded flash content.
frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
GTFONow
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
haylxon
⚡ Blazing-fast tool to grab screenshots of your domain list right from terminal.
hyper
A terminal built on web technologies
InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
My-Hunting-Methodology-
My Private Bug Hunting Methodology
NETReactorSlayer
An open source (GPLv3) deobfuscator and unpacker for Eziriz .NET Reactor
probable_subdomains
Subdomains analysis and generation tool. Reveal the hidden!
rsk-powhsm
Special purpose PowHSM firmware for the RSK PowPeg.
Shhhloader
Syscall Shellcode Loader (Work in Progress)
ssh3
SSH3: faster and rich secure shell using HTTP/3, checkout our article here: https://arxiv.org/abs/2312.08396
Subrake
🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).
TemplatesNuclei
Templates
web-check
🕵️♂️ All-in-one OSINT tool for analysing any website
webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
zip-slip-exploit-example
Example of Zip Slip vulnerability exploitation