t3l3machus

Panagiotis Chartas's repositories

Villain

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

Language:PythonNOASSERTION3623 65 107

hoaxshell

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

Language:PythonBSD-2-Clause2939 46 46

toxssin

An XSS exploitation command-line interface and payload generator.

Language:PythonMIT1157 16 4

psudohash

Generates millions of keyword-based password mutations in seconds.

Language:PythonMIT1028 18 5

PowerShell-Obfuscation-Bible

A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository are the result of personal research, including reading materials online and conducting trial-and-error attempts in labs and pentests.

MIT717 140

eviltree

A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches.

Language:PythonBSD-2-Clause360 3 2

pentest-pivoting

A compact guide to network pivoting for penetration testings / CTF challenges.

180 3 1

wwwtree

A utility for quickly and easily locating, web hosting and transferring resources (e.g., exploits/enumeration scripts) from your filesystem to a victim machine during privilege escalation.

Language:PythonMIT172 2 1

Synergy-httpx

A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving content dynamically (e.g. payloads).

Language:PythonBSD-2-Clause121 20

BabelStrike

The purpose of this tool is: 1. to transliterate and generate possible usernames out of a full names list that may include names written in multiple (non-English) languages, common problem occurring from scraped employee name lists (e.g. from Linkedin). 2. to transliterate a wordlist that may include words/phrases written in multiple (non-Englis

Language:PythonNOASSERTION119 20

CVE-2023-22960

This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server (interface) of more than 60 Lexmark printer models. This issue affects both username-password and PIN authentication.

Language:PythonMIT83 20

OWASP-Testing-Guide-Checklist

OWASP based Web Application Security Testing Checklist

61 40

Awesome-AI

39 30

cybersec-service-metrics

A spreadsheet designed to automatically generate Key Performance Indicators (charts) for Cyber Security Services based on documented data, powered by formulas (no MACROS). Ideal for Team leaders / Managers of small-medium sized organizations.

27 20

ssh-log-alert

Receive email alerts on successful ssh logins based on a predefined IP whitelist OR a predefined IP country origin whitelist (using mailgun)

Language:Shell25 30

t3l3machus

25 30

gmail-ssh-log-alert

Receive email alerts on successful ssh logins based on a predefined IP whitelist OR a predefined IP country origin whitelist (using gmail)

Language:Shell21 20

reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

Language:JavaScriptMIT13 10

YouTube-Example-Scripts

Language:Python9 20

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Language:JavaScriptMIT300

.github

2 20