justinforbes Goto Github PK
Name: Justin Forbes
Type: User
Company: @RustBeltSecurity
Twitter: justinforbes
Location: Pittsburgh, PA
Name: Justin Forbes
Type: User
Company: @RustBeltSecurity
Twitter: justinforbes
Location: Pittsburgh, PA
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Mole is an automatic SQL Injection exploitation tool. clone from sourceforge
ThePhish: an automated phishing email analysis tool
Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science
TinyCheck allows you to easily capture network communications from a smartphone or any device which can be associated to a Wi-Fi access point in order to quickly analyze them. This can be used to check if any suspect or malicious communication is outgoing from a smartphone, by using heuristics or specific Indicators of Compromise (IoCs). In order to make it working, you need a computer with a Debian-like operating system and two Wi-Fi interfaces. The best choice is to use a Raspberry Pi (2+) a Wi-Fi dongle and a small touch screen. This tiny configuration (for less than $50) allows you to tap any Wi-Fi device, anywhere.
Cobalt Strike User Defined Reflective Loader (UDRL). Check branches for different functionality.
TLS-Anvil, a fully automated TLS testsuite for client and servers.
C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
Azure JWT Token Manipulation Toolset
Random Tools
:arrow_up: :skull_and_crossbones: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket
A tool that automates the trevorc2 powershell agent obfuscation process with the pyfuscation tool
Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.
Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
Extract files from any kind of container formats
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
Currently not updated for WMIEvent module...
A set of .NET libraries for Windows implementing PInvoke calls to many native Windows APIs with supporting wrappers.
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell
Venom is a library that meant to perform evasive communication using stolen browser socket
Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.
A Virtual FIDO2 USB Device
VirtuaPlant is a Industrial Control Systems simulator which adds a “similar to real-world control logic” to the basic “read/write tags” feature of most PLC simulators.
Nmap's XML result parse and NVD's CPE correlation to search CVE.
SonicWall SSL-VPN Exploit
VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.