Syaiful Irfan's repositories
awesome-ctf
A curated list of CTF frameworks, libraries, resources and softwares
007-TheBond
This Script will help you to gather information about your victim or friend.
awesome-forensics
A curated list of awesome forensic analysis tools and resources
tf-gha-azure
Setting up Azure infrastructure deployment pipeline with Terraform and Github Actions for workflow automation.
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
bagbak
Yet another frida based iOS dumpdecrypted, supports decrypting app extensions and no SSH required
BlackPhish
:trident: [ Phishing Made Easy ] :trident: (In Beta)
BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Blue-Team-Tools
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.
build-your-own-x
🤓 Build your own (insert technology here)
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
fsociety
A Modular Penetration Testing Framework
gg-shield
Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
ghidra
Ghidra is a software reverse engineering (SRE) framework
Git-Secret
Go scripts for finding an API key / some keywords in repository
infect
Infect Any Android Device With Virus From Link In Termux
maskphish
Introducing masking URL technology to the world for the very FIRST TIME. Give a Mask to Phishing URL like a PRO.. A MUST have tool for Phishing.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
peirates
Peirates - Kubernetes Penetration Testing tool
pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
retoolkit
Reverse Engineer's Toolkit
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Webspoilt
This script will you help to find the information about the website and to help in penetrating testing
wireshark
Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. GitHub won't let us disable pull requests. ☞ THEY WILL BE IGNORED HERE ☜ Please upload them at GitLab.
XSStrike
Most advanced XSS scanner.