avrah Goto Github PK

msdt-follina

Codebase to generate an msdt-follina payload

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

nmapautomator

A script that you can run in the background!

offport_killer

This tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.

oracle_xdb_ftp_pass-exploit

Exploits Oracle 9i XDB ftp password buffer overflow vulnerability

oscprepo

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

pe-sieve

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

pe_to_shellcode

Converts PE into a shellcode

pentest-cheatsheets

pentesting-scripts

A ton of helpful tools

powersharppack

powershellarsenal

A PowerShell Module Dedicated to Reverse Engineering

powersploit

PowerSploit - A PowerShell Post-Exploitation Framework

priv2admin

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

privfu

Kernel mode WinDbg extension and PoCs for token privilege investigation.

privilege-escalation

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

process_overwriting

Yet another variant of Process Hollowing

processhacker

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

proving-ground

Offensive Security Proving Ground Practice Walkthrough

pspy

Monitor linux processes without root permissions

pwn_jenkins

Notes about attacking Jenkins servers

pwntools

CTF framework and exploit development library

pywerview

A (partial) Python rewriting of PowerSploit's PowerView

race

RACE is a PowerShell module for executing ACL attacks against Windows targets.

reflectivedllinjection

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

responder

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

routersploit

Exploitation Framework for Embedded Devices

safetykatz

SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader

scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...