Burak Ayvaz's repositories
Awesome-CobaltStrike-Defence
Defences against Cobalt Strike
awesome-honeypots
an awesome list of honeypot resources
azureOutlookC2
Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP: Use Microsoft Graph API for C2 Operations.
backdoorfactory
A from-scratch rewrite of The Backdoor Factory - a MitM tool for inserting shellcode into all types of binaries on the wire.
CloudDriller
Drilling Website informations with favicon hash.
Url-HSTS-Status
Url HSTS Status Checker for MITM Attacks
CeWL
CeWL is a Custom Word List Generator
CVE-2020-1472
Test tool for CVE-2020-1472
FavFreak
Making Favicon.ico based Recon Great again !
ffuf
Fast web fuzzer written in Go
GitHacker
🕷️ A Git source leak exploit tool that restores the entire Git repository, including data from stash, for white-box auditing and analysis of developers' mind
h8mail
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox, Triage and it is able to scan Android devices against VT and HA.
mimikatz
A little tool to play with Windows security
openpilot
openpilot is an open source driver assistance system. openpilot performs the functions of Automated Lane Centering and Adaptive Cruise Control for over 150 supported car makes and models.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
personal-security-checklist
🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
ransomware-samples
Warning! This repository contains samples of ransomware.
recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
speedtest
Self-hosted Speedtest for HTML5 and more. Easy setup, examples, configurable, mobile friendly. Supports PHP, Node, Multiple servers, and more
torghost
TorGhost is an anonymization script. TorGhost redirects all internet traffic through SOCKS5 tor proxy. DNS requests are also redirected via tor, thus preventing DNSLeak. The scripts also disables unsafe packets exiting the system. Some packets like ping request can compromise your identity.
TTPassGen
密码生成 flexible and scriptable password dictionary generator which can support brute-force、combination、complex rule mode etc...
urlhunter
a recon tool that allows searching on URLs that are exposed via shortener services
xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
zgrab2
Fast Go Application Scanner