Chemo850-Security

All

33 repositories

SecLists
Public
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
PHP
•
MIT License
•25k•0•0•0•Updated Jun 19, 2024Jun 19, 2024
metasploit-framework
Public
Metasploit Framework
Ruby
•
Other
•15k•0•0•0•Updated Jun 11, 2024Jun 11, 2024
ScoutSuite
Public
Multi-Cloud Security Auditing Tool
Python
•
GNU General Public License v2.0
•1.2k•0•0•0•Updated Jun 11, 2024Jun 11, 2024
hayabusa
Public
Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
Rust
•
GNU General Public License v3.0
•251•0•0•0•Updated Jun 11, 2024Jun 11, 2024
beef
Public
The Browser Exploitation Framework Project
JavaScript
•2.3k•0•0•0•Updated Jun 10, 2024Jun 10, 2024
hashcat
Public
World's fastest and most advanced password recovery utility
C
•3.3k•0•0•0•Updated Jun 10, 2024Jun 10, 2024
sqlmap
Public
Automatic SQL injection and database takeover tool
Python
•
Other
•6.1k•0•0•0•Updated Jun 10, 2024Jun 10, 2024
impacket
Public
Impacket is a collection of Python classes for working with network protocols.
Python
•
Other
•3.8k•0•0•0•Updated Jun 9, 2024Jun 9, 2024
pacu
Public
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Python
•
BSD 3-Clause "New" or "Revised" License
•763•0•0•0•Updated Jun 8, 2024Jun 8, 2024
trufflehog
Public
Find and verify secrets
Go
•
GNU Affero General Public License v3.0
•2.1k•0•0•0•Updated Jun 8, 2024Jun 8, 2024
masscan
Public
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
C
•
GNU Affero General Public License v3.0
•3.2k•0•0•0•Updated Jun 7, 2024Jun 7, 2024
EyeWitness
Public
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Python
•
GNU General Public License v3.0
•893•0•0•0•Updated Jun 7, 2024Jun 7, 2024
LOLBAS
Public
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
XSLT
•
GNU General Public License v3.0
•1.1k•0•0•0•Updated Jun 6, 2024Jun 6, 2024
sigma
Public
Main Sigma Rule Repository
Python
•
Other
•2.4k•0•0•0•Updated Jun 5, 2024Jun 5, 2024
ProcDump-for-Linux
Public
A Linux version of the ProcDump Sysinternals tool
C
•
MIT License
•326•0•0•0•Updated May 31, 2024May 31, 2024
AADInternals
Public
AADInternals PowerShell module for administering Azure AD and Office 365
PowerShell
•
MIT License
•241•0•0•0•Updated May 21, 2024May 21, 2024
CeWL
Public
CeWL is a Custom Word List Generator
Ruby
•298•0•0•0•Updated May 16, 2024May 16, 2024
thc-hydra
Public
hydra
C
•
GNU Affero General Public License v3.0
•2.3k•0•0•0•Updated May 7, 2024May 7, 2024
tls-scan
Public
An Internet scale, blazing fast SSL/TLS scanner ( non-blocking, event-driven )
C
•
Other
•55•0•0•0•Updated Apr 17, 2024Apr 17, 2024
cloudmapper
Public
CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
JavaScript
•
BSD 3-Clause "New" or "Revised" License
•841•0•0•0•Updated Apr 3, 2024Apr 3, 2024
rita
Public
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
Go
•
GNU General Public License v3.0
•359•0•0•0•Updated Mar 21, 2024Mar 21, 2024
MSOLSpray
Public
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
PowerShell
•
MIT License
•175•0•0•0•Updated Mar 19, 2024Mar 19, 2024
AzViz
Public
⚡ ☁ Azure Visualizer aka 'AzViz' : A #powershell module to automatically generate Azure resource topology diagrams by just typing a PowerShell cmdlet and passing the name of one or more Azure Resource groups
PowerShell
•
MIT License
•158•0•0•0•Updated Oct 24, 2023Oct 24, 2023
DomainPasswordSpray
Public
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
PowerShell
•
MIT License
•402•0•0•0•Updated Sep 22, 2023Sep 22, 2023
CloudPentestCheatsheets
Public
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
MIT License
•548•0•0•0•Updated Sep 21, 2023Sep 21, 2023
DefenderCheck
Public
Identifies the bytes that Microsoft Defender flags on.
C#
•
BSD 3-Clause "New" or "Revised" License
•461•0•0•0•Updated Sep 14, 2023Sep 14, 2023
smbeagle
Public
SMBeagle - Fileshare auditing tool.
C#
•
Apache License 2.0
•82•0•0•0•Updated Jul 28, 2023Jul 28, 2023
GCPBucketBrute
Public
A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
Python
•
BSD 3-Clause "New" or "Revised" License
•89•0•0•0•Updated May 26, 2023May 26, 2023
fireprox
Public
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
Python
•
GNU General Public License v3.0
•288•0•0•0•Updated Apr 3, 2023Apr 3, 2023
DPAT
Public
Domain Password Audit Tool for Pentesters
Python
•
MIT License
•161•0•0•0•Updated Jun 24, 2022Jun 24, 2022