tanprathan

Prathan Phongthiproek's starred repositories

mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

Language:PythonMIT3459400

the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.

Language:JavaApache-2.0393000

hbctool

Hermes Bytecode Reverse Engineering Tool (Assemble/Disassemble Hermes Bytecode)

Language:PythonMIT40300

SprayingToolkit

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Language:PythonGPL-3.0142100

routersploit

Exploitation Framework for Embedded Devices

Language:PythonNOASSERTION1191200

tomcatWarDeployer

Apache Tomcat auto WAR deployment & pwning penetration testing tool.

Language:PythonGPL-3.039900

WinPwn

Automation for internal Windows Penetrationtest / AD-Security

Language:PowerShellBSD-3-Clause320300

PrivescCheck

Privilege Escalation Enumeration Script for Windows

Language:PowerShellBSD-3-Clause264700

AvaloniaILSpy

Avalonia-based .NET Decompiler (port of ILSpy)

Language:C#142500

Gopherus

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

Language:PythonMIT268500

pspy

Monitor linux processes without root permissions

Language:GoGPL-3.0461600

PENTESTING-BIBLE

articles

MIT1270800

Magisk

The Magic Mask for Android

Language:C++GPL-3.04464700

bagbak

Yet another frida based iOS dumpdecrypted. Also decrypts app extensions

Language:JavaScriptMIT112400

RMS-Runtime-Mobile-Security

Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime

Language:JavaScriptGPL-3.0249200

codeql-intro

Language:CodeQL200

ghidra_scripts

Scripts for the Ghidra software reverse engineering suite.

Language:YARAGPL-3.099000

dsdump

An improved nm + Objective-C & Swift class-dump

Language:Objective-C++109300

hakrawler

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Language:GoGPL-3.0425400

swiftshield

🔒 Swift Obfuscator that protects iOS apps against reverse engineering attacks.

Language:SwiftGPL-3.0229400

gitrob

Reconnaissance tool for GitHub organizations

Language:GoMIT584300

Fast-Google-Dorks-Scan

The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread file types and path traversal. The 100% automated.

Language:Shell132600

relative-url-extractor

A small tool that extracts relative URLs from a file.

Language:Ruby70200

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION1504500

CryptoSwift

CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift

Language:SwiftNOASSERTION1003600

CVE-2019-2729-Exploit

CVE-2019-2729 Exploit Script

Language:Python4100

fuzzing_tutorial

Mutation Based Grey Box Fuzzing with AFL Tutorial

Language:C500

CVE-2019-1253

Poc for CVE-2019-1253

Language:C#15400

wastc

Secure-D Web Application Security Test Checklist summarizes well-known weaknesses, vulnerabilities and best practices into review topics with short description and recommendation. Its objective is to aid penetration tester to review the web application thoroughly.

MIT2000