optiv Goto Github PK
Name: Optiv Source Zero
Type: Organization
Bio: Optiv Source Zero provides research, tools and resources for the innovative cybersecurity community. Part of Optiv.
Twitter: optiv
Location: Global
Name: Optiv Source Zero
Type: Organization
Bio: Optiv Source Zero provides research, tools and resources for the innovative cybersecurity community. Part of Optiv.
Twitter: optiv
Location: Global
airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authentication attacks. airCross can locate AirWatch authentication endpoint, validate the authentication strategy of the environment, collect GroupID authentication values, conduct single-factor authentication, and perform user enumeration, in some instances.
A simple NDK-based application on which to demonstrate some important attack strategies.
(kinda) Malicious Outlook Reader
Universal BLE Monitoring with Frida (or Objection)
BurpSuite plugin for decoding IBM WebSphere Portlet States
reset-a-tron Burp extension
Shellshock scanner for Apache MOD_CGI
HIBP Pwned Passwords API Client for .NET apps
HIBP Pwned Passwords API client for Java projects
Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerability
Microsoft Defender ATP Advanced Hunting Queries
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of capturing access control card data while performing physical security assessments. Doppelgänger keeps the operator's ease of access, maintenance, and operational communications in mind.
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
An Office365 User Attack Tool
An Intentionally designed Vulnerable Android Application built in Kotlin.
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
Enumerate valid users within Microsoft Teams and OneDrive with clean output.
A very simple Burp extension to make it easier to enumerate credit cards in the Intruder.
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow
Network based steganography based control channels and chat.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.