Matheus Val's repositories
PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
warcannon
High speed/Low cost CommonCrawl RegExp in Node.js
ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
phishmonger
Phishing Framework for Pentesters
ThreatIngestor
Extract and aggregate threat intelligence.
cve-search
cve-search - a tool to perform local searches for known vulnerabilities
targetedKerberoast
Kerberoast with ACL abuse capabilities
pegasus_spyware
decompiled pegasus_spyware
CredPhish
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
BadAssMacros
BadAssMacros - C# based automated Malicous Macro Generator.
SharpRDPHijack
A POC Remote Desktop (RDP) session hijack utility for disconnected sessions
AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Tokenvator
A tool to elevate privilege with Windows Tokens
Apktool
A tool for reverse engineering Android apk files
CheeseTools
Self-developed tools for Lateral Movement/Code Execution
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
redpill
Assist reverse tcp shells in post-exploration tasks
ail-framework
AIL framework - Analysis Information Leak framework
kali-whoami
Whoami is a privacy tool developed to keep you anonymous on Kali Linux at the highest level.
Cannon
Cannon is a post-exploitation framework fully developed using python3. You will be able to download and upload files, run pre-defined modules, harvest reverse shells, and many more.
TeamsUserEnum
User enumeration with Microsoft Teams API
Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
theHarvester
E-mails, subdomains and names Harvester - OSINT
spiderfoot
SpiderFoot automates OSINT so you can focus on analysis.
OSINT-Brazuca
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
phoneinfoga
Information gathering & OSINT framework for phone numbers
ivre
Network recon framework, published by @cea-sec & @ANSSI-FR
Sentinel2D3FEND
This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defenses