Matheus Val's repositories
1PasswordSuite
Utilities to extract secrets from 1Password
CobaltSpam
Tool based on CobaltStrikeParser from SentinelOne which can be used to spam a CobaltStrike server with fake beacons
deepdarkCTI
Collection of Cyber Threat Intelligence sources from the deep and dark web
departmentofdefense
A list of Department of Defense Endpoints to check for DoD VDP (Vulnerability Disclosure Program)
dnstake
DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
freki
:wolf: Malware analysis platform
Git-Secret
Go scripts for finding an API key / some keywords in repository
inceptor
Template-Driven AV/EDR Evasion Framework
ip-locator
Grap information for multiple IP Addresses including lat/long, city, state, and if the IP is owned by a VPN.
jspanda
client-side prototype pullution vulnerability scanner
mimikatz
A little tool to play with Windows security
minix
Official MINIX sources - Automatically replicated from gerrit.minix3.org
MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
Nettacker
Automated Penetration Testing Framework
nmaptocsv
A simple python script to convert Nmap output to CSV
opencti
Open Cyber Threat Intelligence Platform
patator
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PowerLessShell
Run PowerShell command without invoking powershell.exe
Registry-Recon
Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
rengine
reNgine is a reconnaissance engine(framework) that does end-to-end reconnaissance with the help of highly configurable scan engines and does information gathering about the target web application. reNgine makes use of various open-source tools and makes a configurable pipeline of reconnaissance.
Search-That-Hash
🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
SharpSpray
Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.
siembol
An open-source, real-time Security Information & Event Management tool based on big data technologies, providing a scalable, advanced security analytics framework.
the-book-of-secret-knowledge
A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
toutatis
Toutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
unDefender
Killing your preferred antimalware by abusing native symbolic links and NT paths.
ViolentFungus-C2
Violent Fungus is a command and control (C2) software suite, providing red teams post-exploitation persistence and other juicy stuff. WIP.
whereami
Cobalt Strike Beacon Object File (BOF) that uses handwritten shellcode to return the process Environment strings without touching any DLL's.