muhdidhamm

burp-awesome-tls

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

Misconfiguration-Manager

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

awesome-lists

Awesome Security lists for SOC/CERT/CTI

http-server-cpp

http server in c++

cve-2024-6387-poc

a signal handler race condition in OpenSSH's server (sshd)

hacker-news-undocumented

Some of the hidden norms about Hacker News not otherwise covered in the Guidelines and the FAQ.

pyhtools

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

ReconAIzer

A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

Rust-for-Malware-Development

This repository contains my complete resources and coding practices for malware development using Rust 🦀.

AutoBlue-MS17-010

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

redash-toolbelt

API client and utilities to manage a Redash instance

chiasmodon

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including domain emails, domain credentials, CIDRs , ASNs , and subdomains, the tool also allows users to search Google Play application ID.

DarkGPT

DarkGPT is an OSINT assistant based on GPT-4-200K (recommended use) designed to perform queries on leaked databases, thus providing an artificial intelligence assistant that can be useful in your traditional OSINT processes.

cloudfox

Automating situational awareness for cloud penetration tests.

Ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

CVE-2024-3273

D-Link NAS Command Execution Exploit

talk-to-esp32

I did a video series showing how you can use the app, the schematics you can follow, and also put a code example, youtube video playlist: https://bit.ly/34qoYDY

AdvPhishing

This is Advance Phishing Tool ! OTP PHISHING

fsociety

fsociety Hacking Tools Pack – A Penetration Testing Framework

terrascan

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Android-PIN-Bruteforce

Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

qemu-t8030

iPhone 11 emulated on QEMU

caa-virus

C# Annoying Application virus. A simple codes in writing annoying application - virus like.

web-check

🕵️‍♂️ All-in-one OSINT tool for analysing any website

react-three-rapier

🤺 Rapier physics in React

shosubgo

Small tool to Grab subdomains using Shodan api.

Keres

Persistent Powershell backdoor tool {😈}

OSIF

Open Source Information Facebook

wifite