malwar3ninja Goto Github PK

dnscrypt-autoinstall

Automatic installation and configuration of DNSCrypt (on Debian + Redhat like systems). This script will install DNSCrypt and configure it to start on boot and use an optional dnscrypt service.

dnsintel

dnsIntel is a tool for downloading domains from threat intelligence sources and creates a blacklist file with dnsmasq or BIND format.

dvr-exploiter

DVR-Exploiter a Bash Script Program Exploit The DVR's Based on CVE-2018-9995

elasticintel

Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.

elk-forensics

ELK configuration files for Forensic Analysts and Incident Handlers

email-botnet-framework

#Email #Botnet #EmailBotnet #Framework #Bruteforce #EmailBombing #Spoof #Bombing #development

empire

Empire is a PowerShell and Python post-exploitation agent.

encase-enscripts

General repository for compiled and uncompiled EnCase EnScripts

encase-enscripts-1

EnCase EnScripts To Make The Investigation Little Easy :P

encasenetworkframework

This is a framework written in EnScript to utilize the network capabilities of EnCase. The purpose is to allow for someone to build a quick network enabled EnScript to respond quickly to threats with minimal code being written.

enscript

EnScripts for... EnCase

exploit-database

The official Exploit Database repository

exploitation-of-log4j2-cve-2021-44228

IP addresses exploiting recent log4j2 vulnerability CVE-2021-44228

falcongate

A smart gateway to stop hackers and Malware attacks

feed_fetchers

Fetch threat intel feeds and normalize content

fenrir-ocd

fruityc2

FruityC2 is a post-exploitation (and open source) framework based on the deployment of agents on compromised machines. Agents are managed from a web interface under the control of an operator.

generate-macro

This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.

gosint

The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).

hackpi

Hacking tool inside a Raspberry Pi zero

hercules

HERCULES is a special payload generator that can bypass antivirus softwares.

hippocampe

Threat Feed Aggregation, Made Easy

imaginaryc2

Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which captures HTTP requests towards selectively chosen domains/IPs. Additionally, the tool aims to make it easy to replay captured Command-and-Control responses/served payloads.

intelmq

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

inveigh

Inveigh is a Windows PowerShell LLMNR/mDNS/NBNS spoofer/man-in-the-middle tool

invoke-psimage

Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

irm

Incident Response Methodologies

janusec

Janusec Application Gateway, a Golang based application security solution which provides WAF (Web Application Firewall), CC attack defense, unified web administration portal, private key protection, web routing and scalable load balancing.

jshell

JShell - Get a JavaScript shell with XSS.

ketshash

A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.