albert-wayen Goto Github PK

s1ren-offsec-stuf

samba_3.x_4.x_exploit

Exploit for Samba 3.x 4.x that doesn't use Metasploit-Framework

scarecrow

ScareCrow - Payload creation framework designed around EDR bypass.

shellghost

A memory-based evasion technique which makes shellcode invisible from process start to end.

shelly

Automatic Reverse Shell Generator

shuffledns

MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

simplehttpserver

Go alternative of python SimpleHTTPServer

sn1per

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

spark

✨Spark is a web-based, cross-platform and full-featured Remote Administration Tool (RAT) written in Go that allows you control all your devices anywhere. Spark是一个Go编写的，网页UI、跨平台以及多功能的远程控制和监控工具，你可以随时随地监控和控制所有设备。

sql-injection-payload-list

🎯 SQL Injection Payload List

sql-scanner

A tool that finds and scan sites for sql injection vulnerability

ssti-finder

This tool is designed to detect and identify Server-Side Template Injection (SSTI) vulnerabilities in web applications

ssti-payloads

🎯 Server Side Template Injection Payloads

subfinder

Fast passive subdomain enumeration tool.

suforce

Performs brute force attacks on user passwords by abusing the su binary.

suid3num

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

tacticalrmm

A remote monitoring & management tool, built with Django, Vue and Go.

teardroid-phprat

:india: :robot: It's easy to use android botnet work without port forwarding, vps and android studio

tecspy

Android Remote Administration Tool

telegram-get-remote-ip

Get IP address on other side audio call in Telegram.

the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

thezoo

A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.

tornado

Anonymously Reverse Shell over Tor Network using Hidden services without Portforwarding.

toxssin

An XSS exploitation command-line interface and payload generator.

traitor

:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

uncover

Quickly discover exposed hosts on the internet using multiple search engines.

villain

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

vulnyx.github.io

VulNyx is a website that contains a list of vulnerable virtual machines based on Unix systems.

vulscan

Advanced vulnerability scanning with Nmap NSE