Beast code in Giters

Mike Brancato's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT58883 18150

sqlmap

Automatic SQL injection and database takeover tool

Language:PythonNOASSERTION31520 1095 5199

setup-ipsec-vpn

Scripts to build your own IPsec VPN server, with IPsec/L2TP, Cisco IPsec and IKEv2

Language:ShellNOASSERTION24660 646 1434

browsh

A fully-modern text-based browser, rendering to TTY and browsers

Language:JavaScriptLGPL-2.116789 184 410

xg2xg

by ex-googlers, for ex-googlers - a lookup table of similar tech & services

14448 434 36

PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Language:PowerShellNOASSERTION11675 781 188

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Language:HTMLGPL-3.010450 142 47

byob

An open-source post-exploitation framework for students, researchers and developers.

Language:PythonGPL-3.08864 325 502

wfuzz

Web application fuzzer

Language:PythonGPL-2.05797 169 197

aquatone

A Tool for Domain Flyovers

Language:GoMIT5574 1350

w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Language:Python4495 194 18656

arachni

Web Application Security Scanner Framework

Language:RubyNOASSERTION3720 204 1024

signal-cli

signal-cli provides an unofficial commandline, JSON-RPC and dbus interface for the Signal messenger.

Language:JavaGPL-3.03085 67 1065

go-mysql-server

A MySQL-compatible relational database with a storage agnostic query engine. Implemented in pure Go.

Language:GoApache-2.02288 26 204

kubernetes-elasticsearch-cluster

Elasticsearch cluster on top of Kubernetes made easy.

Apache-2.01510 88 189

AD-control-paths

Active Directory Control Paths auditing and graphing tools

Language:CNOASSERTION648 66 27

backslash-powered-scanner

Finds unknown classes of injection vulnerabilities

Language:JavaNOASSERTION623 29 21

ircapabilities

Incident Response Hierarchy of Needs

430 320

pyew

Official repository for Pyew.

Language:PythonGPL-2.0381 32 39

threat_intel

Threat Intelligence APIs

Language:PythonMIT272 33 38

rupture

A framework for BREACH and other compression-based crypto attacks

Language:TeXMIT227 24 200

CVE-2023-0179-PoC

Language:CMIT209 5 8

Pass-the-Hash-Guidance

Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber

Language:PowerShellNOASSERTION196 440

kubernetes-elk-cluster

ELK (Elasticsearch + Logstash + Kibana) cluster on top of Kubernetes made easy.

Language:DockerfileApache-2.0147 16 14

kill-kube-ns

Kill a Kubernetes namespace suffering from being stuck in "Terminating"

Language:Shell146 6 2

aws-minikube

Single node Kubernetes instance implemented using Terraform and kubeadm

Language:HCLApache-2.0124 6 14

DefCon24

Language:PowerShell117 13 1

The_Automotive_Threat_Modeling_Template

NCC Group Template for the Microsoft Threat Modeling Tool 2016 for Automotive Security

45 16 3

docker-cloudstack

Builds and runs a CloudStack Management Server stack under Docker.

Language:ShellApache-2.016 5 1

vault-client

Dead simple HashiCorp Vault consumer client

Language:JavaApache-2.01 30