(0 stars) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
仓库
Viralmaniar 的仓库
Android RAT
(5 stars) (1 fork) (0 个已索引 issue) (0 个开放 good first issue)
C2 Framework in C# to handle reverse shells
(2 stars) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
(1,542 stars) (291 forks) (0 个已索引 issue) (0 个开放 good first issue)
CloudSpecter is a multi-cloud bucket reconnaissance and permission testing tool for AWS S3, Google Cloud Storage, and Azure Blob Storage. It detects publicly accessible or misconfigured buckets/containers by safely testing read and write permissions, making it ideal for red team operations and cloud security assessments.
(4 stars) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
DDWPasteRecon tool will help you identify code leak, sensitive files, plaintext passwords, password hashes. It also allow member of SOC & Blue Team to gain situational awareness of the organisation's web exposure on the pastesites. It Utilises Google's indexing of pastesites to gain targeted intelligence of the organisation. Blue & SOC teams can collect and analyse data from these indexed pastesites to better protect against unknown threats.
(44 stars) (12 forks) (0 个已索引 issue) (0 个开放 good first issue)
DarkAgent Remote Administration Tool RAT by DragonHunter
(7 stars) (2 forks) (0 个已索引 issue) (0 个开放 good first issue)
Viralmaniar/DevGuideShell
The OWASP Guide
(1 star) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
(2 stars) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
This write-up will provide detailed description on how to bypass Guided Access mode on Apple iPhones.
(21 stars) (4 forks) (0 个已索引 issue) (0 个开放 good first issue)
Viralmaniar/HandyScriptsPowerShell
(0 stars) (1 fork) (0 个已索引 issue) (0 个开放 good first issue)
This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the attacker machines provides option to delete these files to clear the trace.
(111 stars) (33 forks) (0 个已索引 issue) (0 个开放 good first issue)
ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary reconnaissance which will help them in performing further targeted attacks.
(1,157 stars) (176 forks) (0 个已索引 issue) (0 个开放 good first issue)
latest version of scanners for IIS short filename (8.3) disclosure vulnerability
(1 star) (1 fork) (0 个已索引 issue) (0 个开放 good first issue)
This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
(95 stars) (37 forks) (0 个已索引 issue) (0 个开放 good first issue)
Access to awesome blogs and tutorials related to information security field.
(1 star) (1 fork) (0 个已索引 issue) (0 个开放 good first issue)
(1 star) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
Short snippets for pentesting.
(1 star) (0 forks) (0 个已索引 issue) (0 个开放 good first issue)
Living Off the Land – Versatile Ecosystem for Research, Security & Evasion
(1 star) (1 fork) (0 个已索引 issue) (0 个开放 good first issue)
Viralmaniar/MurMurHashPython
This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
(119 stars) (19 forks) (0 个已索引 issue) (0 个开放 good first issue)