Syaiful Irfan's repositories
tf-gha-azure
Setting up Azure infrastructure deployment pipeline with Terraform and Github Actions for workflow automation.
syfanx
Just another GitHub profile.
peirates
Peirates - Kubernetes Penetration Testing tool
bagbak
Yet another frida based iOS dumpdecrypted, supports decrypting app extensions and no SSH required
Git-Secret
Go scripts for finding an API key / some keywords in repository
awesome-forensics
A curated list of awesome forensic analysis tools and resources
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
gg-shield
Detect secret in source code, scan your repo for leaks. Find secrets with GitGuardian and prevent leaked credentials. GitGuardian is an automated secrets detection & remediation service.
007-TheBond
This Script will help you to gather information about your victim or friend.
awesome-ctf
A curated list of CTF frameworks, libraries, resources and softwares
CyberChef
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
Webspoilt
This script will you help to find the information about the website and to help in penetrating testing
pyWhat
🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙♀️
fsociety
A Modular Penetration Testing Framework
infect
Infect Any Android Device With Virus From Link In Termux
Blue-Team-Tools
A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-Team defense under an active threat.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
retoolkit
Reverse Engineer's Toolkit
wireshark
Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. GitHub won't let us disable pull requests. ☞ THEY WILL BE IGNORED HERE ☜ Please upload them at GitLab.
build-your-own-x
🤓 Build your own (insert technology here)
BlackWidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
pwncat
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
maskphish
Introducing masking URL technology to the world for the very FIRST TIME. Give a Mask to Phishing URL like a PRO.. A MUST have tool for Phishing.
BlackPhish
:trident: [ Phishing Made Easy ] :trident: (In Beta)
ghidra
Ghidra is a software reverse engineering (SRE) framework
XSStrike
Most advanced XSS scanner.