GH0ST_3exP10it 's Projects
Run interactive android exploits in linux.
Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
GitHub Is the HOME ! š± We believe in God, everyone else is suspicious š±
Automated phishing tool made by AnonyminHack5 to phish various sites with 30+ templates and also has an inbuilt ngrok already to easily help you generate your link and send it to your victim. Anonphisher tool is made with pure bash script and needs required packages for it to work.
This is an unofficial repository, for the official repository visit: https://git.anonymousmessenger.ly/dx/AnonymousMessenger
During the exploitation phase of a pen test or ethical hacking engagement, you will ultimately need to try to cause code to run on target system computers. Whether accomplished by phishing emails, delivering a payload through an exploit, or social engineering, running code on target computers is part of most penetration tests. That means that you will need to be able to bypass antivirus software or other host-based protection for successful exploitation. The most effective way to avoid antivirus detection on your target's computers is to create your own customized backdoor. Here is a simple way to evade anti-virus software when creating backdoors!
Anti-virus artifacts. Listing APIs hooked by: Avira, BitDefender, F-Secure, MalwareBytes, Norton, TrendMicro, and WebRoot.
A Nuclei template for Apache Solr affected by Apache Log4J CVE-2021-44228
A python script to scan for Apache Tomcat server vulnerabilities.
Steganalysis web platform
API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
Checklist of the most important security countermeasures when designing, testing, and releasing your API
API Security Project aims to present unique attack & defense methods in API Security field
A wordlist of API names for web application assessments
The DevSecOps toolset for REST APIs
Reconstruct Open API Specifications from real-time workload traffic seamlessly.
APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security testers, it can be used by anyone to identify and address potential security vulnerabilities in their code.
Advanced Android AV Evasion Tool Written In Python 3 that can Embed/Bind meterpreter APK to any Legitimate APK
Scanning APK file for URIs, endpoints & secrets.
Extract endpoints from APK files
APOLOGEE is a Python script and Metasploit module that enumerates a hidden directory on Siemens APOGEE PXC BACnet Automation Controllers (all versions prior to V3.5) and TALON TC BACnet Automation Controllers (all versions prior to V3.5). With a 7.5 CVSS, this exploit allows for an attacker to perform an authentication bypass using an alternate path or channel to access hidden directories in the web server. This repository takes advantage of CVE-2017-9947.
A Tool for Domain Flyovers
Web Application Security Scanner Framework
// Source : ISO
Hacking Methodology, Cheatsheats, Conceptual-Breakdowns
Python botnet and backdoor
HTTP parameter discovery suite.
ARL(Asset Reconnaissance Lighthouse)čµäŗ§ä¾¦åÆēÆå”ē³»ē»ęØåØåæ«é侦åÆäøē®ę å
³čēäŗčē½čµäŗ§ļ¼ęå»ŗåŗē”čµäŗ§äæ”ęÆåŗć åå©ē²ę¹å®å
Øå¢éęč
ęøéęµčÆäŗŗåęę侦åÆåę£ē“¢čµäŗ§ļ¼åē°ååØēčå¼±ē¹åę»å»é¢ć