mjn0619

bucket-stream

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

shhgit

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

awsdigger

AWS IAM resources search tool

RobotsDisallowed

A curated list of the most common and most interesting robots.txt disallowed directories.

HoneyCredIPTracker

Quick script to gather stats on incoming credentials and IPs for a honey listener.

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

icebreaker

Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment

BadBlood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

pwdgen

gplaycli

Google Play Downloader via Command line

CDQR

The Cold Disk Quick Response (CDQR) tool is a fast and easy to use forensic artifact parsing tool that works on disk images, mounted drives and extracted artifacts from Windows, Linux, MacOS, and Android devices

CyLR

CyLR - Live Response Collection Tool

Skadi

Collect, Process, and Hunt with host based data from MacOS, Windows, and Linux

uptux

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Sticky-Keys-Slayer

Scans for accessibility tools backdoors via RDP

changeme

A default credential scanner.

sticky_keys_hunter

A script to test an RDP host for sticky keys and utilman backdoor.

s3-buckets-finder

Find AWS S3 buckets and test their permissions.

lazys3

burner-email-providers

A list of temporary email providers

void-mail

self-hosted disposable email service (nodejs) using catch-all and imap

disposable-mailbox

self-hosted disposable email service (php) using catch-all and imap

disposable-email-domains

a list of disposable and temporary email address domains

Watson

Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities

modwifi

CAPEv2

Malware Configuration And Payload Extraction

dnscat2-powershell

A Powershell client for dnscat2, an encrypted DNS command and control tool.

DNSExfiltrator

Data exfiltration over DNS request covert channel

dnsteal

DNS Exfiltration tool for stealthily sending files over DNS requests.

ConPtyShell

ConPtyShell - Fully Interactive Reverse Shell for Windows