mhaskar

followers

following

stars

Between Lines

https://shells.systems

@mohammadaskar2

Askar's starred repositories

hashcat

World's fastest and most advanced password recovery utility

Language:C20571 508 2051

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT18554 224 2305

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Language:JavaScriptMIT8735 200 1456

Rubeus

Trying to tame the three-headed dog.

Language:C#NOASSERTION3963 83 76

SigThief

Stealing Signatures and Making One Invalid Signature at a Time

Language:PythonBSD-3-Clause2042 58 11

EDRSandblast

Language:C1421 38 15

Backstab

A tool to kill antimalware protected processes

Language:C1355 26 10

OffensiveCSharp

Collection of Offensive C# Tooling

Language:C#BSD-3-Clause1337 38 7

HiddenDesktop

HVNC for Cobalt Strike

Language:CMIT1136 15 4

SigFlip

SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.

Language:C#MIT1010 20 11

procyon

Procyon is a suite of Java metaprogramming tools, including a rich reflection API, a LINQ-inspired expression tree API for runtime code generation, and a Java decompiler.

Language:JavaNOASSERTION955 24 53

awspx

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Language:PythonGPL-3.0894 27 42

PackMyPayload

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

Language:PythonMIT825 17 8

EvilnoVNC

Ready to go Phishing Platform

Language:JavaScriptGPL-3.0770 18 30

Inline-Execute-PE

Execute unmanaged Windows executables in CobaltStrike Beacons

Language:CApache-2.0614 16 3

DEFCON-31-Syscalls-Workshop

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

Language:C590 100

ccat

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Language:PythonBSD-3-Clause580 23 2

vcenter_saml_login

A tool to extract the IdP cert from vCenter backups and log in as Administrator

Language:PythonMIT475 10 17

GetMail

利用NTLM Hash读取Exchange邮件

Language:PythonMIT414 7 3

MacDirtyCowDemo

Get root on macOS 13.0.1 with CVE-2022-46689 (macOS equivalent of the Dirty Cow bug), using the testcase extracted from Apple's XNU source.

Language:C388 11 5

APCLdr

Payload Loader With Evasion Features

Language:CMIT301 4 2

ETWHash

C# POC to extract NetNTLMv1/v2 hashes from ETW provider

Language:C#247 6 1

apache2_BackdoorMod

A backdoor module for Apache2

Language:CGPL-3.0195 5 2

Find-Hardcoded

You can find hardcoded Api-Key,Secret,Token Etc..

Language:ShellGPL-3.077 20

ServerlessRedirector

Serverless Redirector in various cloud vendor for red team

Language:Python69 30

SharpZippo

List/Read contents of Zip files (in memory and without extraction) using CobaltStrike's Execute-Assembly

Language:C#GPL-3.058 10

RedWardenLite

A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.

Language:PythonGPL-3.042 2 2

thorn

🌹 Thorn is an open-source, data privacy vault to store and manage PII in a fully compliant manner.

Language:GoNOASSERTION20 1 5

CVE-2022-36804-PoC-Exploit

Somewhat Reliable PoC Exploit for CVE-2022-36804 (BitBucket Critical Command Injection)

Language:Python15 1 3

venlock

Detect and block introduction of unapproved 3rd party libraries. Typically used in a CI.

Language:GoMIT1 20