st3rven's repositories
kali_setup
Script for setup some initial configurations.
BurpBounty
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
cdncheck
A filter to check for CDN IP addresses during port scanning.
cloudlist
Cloudlist is a tool for listing Assets from multiple Cloud Providers.
Cookie-Graber-BOF
C or BOF file to extract WebKit master key to decrypt user cookie
DeHashed-API-Tool
A command-line tool to query the DeHashed API. Easily search for various parameters like usernames, emails, hashed passwords, IP addresses, and more.
Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
ghidra
Ghidra is a software reverse engineering (SRE) framework
gophish
Open-Source Phishing Toolkit
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Havoc
The Havoc Framework
httpx
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
interactsh-web
Web dashboard for Interactsh client
MagicSigner
Signtool for expired certificates
mapcidr
Small utility program to perform multiple operations for a given subnet/CIDR ranges.
naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
NetExec
The Network Execution Tool
notify
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
nuclei-burp-plugin
Nuclei plugin for BurpSuite
PowerShell-Obfuscation-Bible
A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.
proxify
Swiss Army knife Proxy tool for HTTP/HTTPS traffic capture, manipulation, and replay on the go.
rustyneedle
A Rust-based dropper for shellcode payloads.
shuffledns
MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
simplehttpserver
Go alternative of python SimpleHTTPServer
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
wifi-pineapple-cloner
Clone WiFi Pineapple NANO/TETRA in generic hardware
Win32_Offensive_Cheatsheet
Win32 and Kernel abusing techniques for pentesters