prayog-lab Goto Github PK

afe

Android Framework for Exploitation, is a framework for exploiting android based devices

andspoilt

Run interactive android exploits in linux.

awesome-iocs

A collection of sources of indicators of compromise.

bea.r

bea.R: A library for use with BEA’s API

breachnotes

Various public documents, white-papers, articles, data, analysis, and statistics about breaches and security trends.

bruteforce-database

Bruteforce database

bubblewrap

Unprivileged sandboxing tool

ccat

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

codex-backend

Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in malware hunting.

comahawk

Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322

connectionkit

FTP/SFTP/WebDAV etc. for Cocoa. Join the ConnectionKit mailing list for information and suggestions.

cve-2019-11510

Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)

cve-2019-11708

Full exploit chain (CVE-2019-11708 & CVE-2019-9810) against Firefox on Windows 64-bit.

cve-2019-19781

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

data

APTnotes data

data.gov

Data.gov source code and issue tracker

dna

A python script to encode/decode arbitrary computer files into DNA sequences.

econ-visual-guide

england

Free open public domain football data for England (and Wales) incl. English Premier League (EPL) etc.

es-espana

Free open public domain football data (football.db) for España (Spain) / Europe - Primera División / La Liga, etc.

eu.us.opendata

As part of an EU-US Transatlantic Open Data Partnership, the eu.us.opendata R library was developed to provide access to comparable datasets from the EU and the US. This version is in alpha. Feedback welcome -- submit an issue via this repo!

exploits

Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity

file-less-ransomware-demo

Demonstrate about file-less malware approach using JavaScript

generate-macro

This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.

gorsair

Gorsair hacks its way into remote docker containers that expose their APIs

hakrevdns

Small, fast tool for performing reverse DNS lookups en masse.

injectallthethings

Seven different DLL injection techniques in one single project.

kube-bench

Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

macro_pack

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

maliciousmacrogenerator

Malicious Macro Generator