Beast code in Giters

Gabriel Compan's repositories

stager.dll

Code from this article: https://blog.rapid7.com/2018/05/03/hiding-metasploit-shellcode-to-evade-windows-defender/

Language:C++172 8 2

pentest

Custom tools and projects about security

Language:Python110 130

Invoke-Recon

"Powershell script assisting with domain enumerating and in finding quick wins" - Basically written while doing the 'Advanced Red Team' lab from pentesteracademy.

Language:PowerShell76 3 21

wptsextensions.dll

WptsExtensions.dll for exploiting DLL hijacking of the task scheduler.

Language:C++51 20

mitm

Repository housing my 'man in the middle' project dealing with mitmproxy (Defeating HTTPS/HSTS, JS injection, DNS spoofing)

Language:Python17 3 2

phackt.github.io

https://phackt.com

Language:JavaScript5 20

PowerSploit

PowerSploit - A PowerShell Post-Exploitation Framework

Language:PowerShellNOASSERTION1 10

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

Language:PowerShell1 10

webapp

Secure Java WebApp (Java 8, Spring Security, XSS, CSRF, CORS, HSTS, ...)

Language:Java1 20

xsssniper

An automatic XSS discovery tool

Language:Python100

CORScanner

Fast CORS misconfiguration vulnerabilities scanner🍻

Language:PythonMIT010

altdns

Generates permutations, alterations and mutations of subdomains and then resolves them

Language:PythonApache-2.0020

Amass

In-depth Attack Surface Mapping and Asset Discovery

Language:GoNOASSERTION010

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com

Language:PowerShellApache-2.0010

Crypto-Honeypot-Detector

The project aims to identify crypto honeypots in many chains.

000

Drupalgeddon2

Exploit for Drupalgeddon 2 - CVE-2018-7600

Language:Ruby000

gateio-crypto-trading-bot-binance-announcements-new-coins

This is a crypto trading bot that scans the Binance Annoucements page for new coins, and places trades on Gateio

Language:PythonMIT000

labs

Labs setup for tests & experimentations

Language:PowerShell010

p5-ssl-tools

various standalone perl scripts

Language:Perl010

PetitPotam

Language:C010

PowerUpSQL

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Language:PowerShellNOASSERTION010

PrintNightmare

Language:C010

puppeteer-examples

Puppeteer example scripts for running Headless Chrome from Node. Run them at https://puppeteersandbox.com

Language:JavaScriptApache-2.0020

ReconJSON

Recon.json is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.

010

SecLists

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.

Language:PHPMIT020

truffleHog

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

Language:PythonGPL-2.0010

windapsearch

Python script to enumerate users, groups and computers from a Windows domain through LDAP queries

Language:PythonGPL-3.0010

zimbra_poc

Zimbra XXE+SSRF+UPLOAD Poc

Language:Python010

phackt