terncgod Goto Github PK

loki

Remote Access Tool/Botnet

lscript

The LAZY script will make your life easier, and of course faster.

massbleed

MassBleed SSL Vulnerability Scanner

meltdown-exploit

Meltdown Exploit PoC

metasploit-framework

Metasploit Framework

metasploit-pro-trial-grabber

This is a PHP command-line script to auto-grab the metasploit 14-DAYs pro trial key.

microsploit

minion

Minion

modlishka

Modlishka. Reverse Proxy. Phishing NG.

mptcp-abuse

A collection of tools and resources to explore MPTCP on your network. Initially released at Black Hat USA 2014.

ms17-010

MS17-010

my-ctf-web-challenges

Collection of CTF Web challenges I made

nfc_creditcard_reader

octavia

A Python alternative to Dirbuster

odin

Tool for automating penetration testing tasks (in development).

opnigeria

A DDoS tool for OpNigeria

optiva-framework

Optiva-Framework 🔎 Web Application Scanner🕵️

osint-spy

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find deep information about their target. If you want to ask something please feel free to reach out to me at [email protected]

papers

papers about known hardware, software, computer, network and other ressources, including topics like hacking, security and programming.

patcherex

Shellphish's automated patching engine, originally created for the Cyber Grand Challenge.

pdfs

PDF Collection

peepdf

Powerful Python tool to analyze PDF documents

penbox

PenBox - A Penetration Testing Framework - The Tool With All The Tools , The Hacker's Repo

pentest-arsenal

pentesting-bible

Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.

phishx

PhishX - The most powerful spear phishing tool

phpsploit

Stealth post-exploitation framework

pnp-wifi-jammer

This script continuously jams all the WiFi networks around you.

poodle-me

On Tuesday, October 14, 2014, Google released details on the POODLE attack, a padding oracle attack that targets CBC-mode ciphers in SSLv3. The vulnerability allows an active MITM attacker to decrypt content transferred an SSLv3 connection. While secure connections primarily use TLS (the successor to SSL), most users were vulnerable because web browsers and servers will downgrade to SSLv3 if there are problems negotiating a TLS session. An attacker can’t see the plaintext contents encrypted web content. They only see the CBC-encrypted ciphertext blocks. But what happens if the attacker duplicates the block containing the cookie data and overwrites the last block with it? When the receiver decrypts the last block it XORs in the contents of the previous ciphertext (which the attacker knows) and checks the authenticity of the data. Critically, since SSLv3 doesn’t specify the contents of the padding (•) bytes, the receiver cannot check them. Thus the record will be accepted if, and only if, the last byte ends up as a seven. Poodle-Me is a simple tool i wrote that can help detect if a server is vulnerable to the POODLE SSL vulnerability.

powerforensics