amorb Goto Github PK
Type: User
Type: User
MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. The way it works is by injecting shellcode into memory, then wrapping a port spawned (meterpeter in this case) by the shellcode over SSH back to the attackers machine. Then connecting with meterpreter's listener to localhost will communicate through the SSH proxy, to the victim through the SSH tunnel. All communications are relayed through the SSH tunnel and not through the network.
π₯ A powerful MongoDB auditing and pentesting tool π₯
Android Emulator for mobile security testing
Tool made to automate tasks of pentesting.
Nipe is a script to make Tor Network your default gateway.
Zero-Knowledge Proof Implementation for Passwords and Other Secrets
Automated Penetration Testing Framework
π‘Monitor illegal wireless network activities. (Fake Access Points)
Pivoter is a proxy tool for pentesters to have easier lateral movement.
Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
A short a simple python implant.
Python network packet sniffer.
Python Penetration Testing for Developers, published by Packt
This project contains some python scripts
Random Code, POC Scripts and other things (Your Mileage May Vary)
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Rid_enum is a null session RID cycle attack for brute forcing domain controllers.
PoC for CVE-2020-6207 (Missing Authentication Check in SAP Solution Manager)
The Shared Host Integrated Password System (SHIPS) is a solution to provide unique and rotated local super user or administrator passwords for environments where it is not possible or not appropriate to disable these local accounts. Clients may be configured to rotate passwords automatically. Stored passwords can be retrieved by desktop support personnel as required, or updated when a password has to be manually changed in the course of system maintenance. By having unique passwords on each machine and logging of password retrievals, security can be improved my making networks more resistant to lateral movement by attackers and enhancing the ability to attribute actions to individual persons.
SimpleEmail is a email recon tool that is fast and easy framework to build on
Dockerized version of Sn1per (https://github.com/1N3/Sn1per)
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
Here is the source code from all of my tutorials.
Spectre & Meltdown vulnerability/mitigation checker for Linux
SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on a system.
Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
massive SQL injection vulnerability scanner
Striker is an offensive information and vulnerability scanner.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. πππ
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google β€οΈ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.