justinforbes Goto Github PK

the-backdoor-factory

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

themole

Mole is an automatic SQL Injection exploitation tool. clone from sourceforge

thephish

ThePhish: an automated phishing email analysis tool

threadstackspoofer

Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

threatcheck

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

tht

Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science

tinycheck

TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere.

titanldr

Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.

tls-anvil

TLS-Anvil, a fully automated TLS testsuite for client and servers.

tokenstomp

C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic

tokentactics

Azure JWT Token Manipulation Toolset

toolkit

Random Tools

traitor

:arrow_up: :skull_and_crossbones: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

trevorfuscation

A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool

triton

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

turbo-intruder

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

unblob

Extract files from any kind of container formats

updog

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

uproot

Currently not updated for WMIEvent module...

user-behavior-mapping-tool

vanara

A set of .NET libraries for Windows implementing PInvoke calls to many native Windows APIs with supporting wrappers.

vectr

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

vegile

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

venom

Venom is a library that meant to perform evasive communication using stolen browser socket

villain

Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.

virtual-fido

A Virtual FIDO2 USB Device

virtuaplant

VirtuaPlant is a Industrial Control Systems simulator which adds a “similar to real-world control logic” to the basic “read/write tags” feature of most PLC simulators.

vision2

Nmap's XML result parse and NVD's CPE correlation to search CVE.

visualdoor

SonicWall SSL-VPN Exploit

vortex

VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit