Matheus Val's repositories
nmaptocsv
A simple python script to convert Nmap output to CSV
ViolentFungus-C2
Violent Fungus is a command and control (C2) software suite, providing red teams post-exploitation persistence and other juicy stuff. WIP.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Nettacker
Automated Penetration Testing Framework
MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
SharpSpray
Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.
unDefender
Killing your preferred antimalware by abusing native symbolic links and NT paths.
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
ip-locator
Grap information for multiple IP Addresses including lat/long, city, state, and if the IP is owned by a VPN.
toutatis
Toutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
opencti
Open Cyber Threat Intelligence Platform
dnstake
DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
Registry-Recon
Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
jspanda
client-side prototype pullution vulnerability scanner
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
whereami
Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL's.
departmentofdefense
A list of Department of Defense Endpoints to check for DoD VDP (Vulnerability Disclosure Program)
freki
:wolf: Malware analysis platform
minix
Official MINIX sources - Automatically replicated from gerrit.minix3.org
1PasswordSuite
Utilities to extract secrets from 1Password
CobaltSpam
Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
PowerLessShell
Run PowerShell command without invoking powershell.exe
mimikatz
A little tool to play with Windows security
siembol
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
Search-That-Hash
🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
inceptor
Template-Driven AV/EDR Evasion Framework
Git-Secret
Go scripts for finding an API key / some keywords in repository
patator
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.