blakduk Goto Github PK

edrsandblast-godfault

EDRSandblast-GodFault

email-header-analyzer

E-Mail Header Analyzer

emailanalyzer

A short python script that allows you to enter headers from any email service and extracts the relevant data that can be used later on in many ways such as reporting and incident responses.

espoofer

An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻

ethsploiter

Raspberry Pi Zero exploiting gadget using ethernet over USB

evasor

A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

exch_cve-2021-42321

exphub

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，优先更新高危且易利用的漏洞利用脚本，最新添加CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

flare-vm

fleet

A flexible control server for osquery fleets

golinkfinder

A fast and minimal JS endpoint extractor

hackbox

Hackbox is an open-source, container-based platform that makes it easy to launch vulnerable systems to test your hacking skill!

hfish

🍯 A Most Convenient Honeypot Platform. 🐝🐝🐝 🐝🐝

intelowl

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

inventory

Asset inventory of over 800 public bug bounty programs.

invoke-usersimulator

Simulates common user behaviour on local and remote Windows hosts.

jok3r

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

js_telegram_chegg_unlock

Chegg Unlocks - Deploy in Fly.io

jsmon

a javascript change monitoring tool for bugbounties

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

lonelypotato

Modified version of RottenPotatoNG C++

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

mailspoof

Scans SPF and DMARC records for issues that could allow email spoofing.

malicious-pdf

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator

malwoverview

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox and it is able to scan Android devices against VT and HA.

metame

metame is a metamorphic code engine for arbitrary executables

modlishka

Modlishka. Reverse Proxy.

msdat

MSDAT: Microsoft SQL Database Attacking Tool

mssqlproxy

mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse