dooreemii Goto Github PK

.net-deobfuscator

Lists of .NET Deobfuscator and Unpacker (Open Source)

adversarysimulation

Compilation of resources to help with Adversary Simulation automation harness

amass

In-depth Attack Surface Mapping and Asset Discovery

anviz-m3-rfid-cve-2019-11523-poc

Anviz M3 RFID CVE-2019-11523 PoC

apk.sh

apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

attpwn

ATTPwn

autorize

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

autottp

Automated Tactics Techniques & Procedures

awesome-cybersecurity-blueteam

:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

awesome-osint

:scream: A curated list of amazingly awesome OSINT

awesome-pentest

:computer:⚔️ A collection of awesome penetration testing resources, tools, and other shiny things.

binseeker

burpdeveltraining

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

caldera

Automated Adversary Emulation Platform

caldera_pathfinder

Pathfinder is a plugin for mapping network vulnerabilities, scanned by CALDERA or imported by a supported network scanner, and translating those scans into adversaries for network traversal.

cobaltstrike-toolkit

Some useful scripts for CobaltStrike

cve-2016-0189

Proof-of-Concept exploit for CVE-2016-0189 (VBScript Memory Corruption in IE11)

cve-2017-0199

Exploit toolkit CVE-2017-0199 - v2.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter payload to victim without any complex configuration.

cve-2020-0688

Remote Code Execution on Microsoft Exchange Server through fixed cryptographic keys

cve-2020-16947

PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)

cve-2021-1675

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

cve-2021-40444

CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit

cve-2021-42913

Samsung Printer SCX-6X55X Improper Access Control

cve-2022-29464

WSO2 RCE (CVE-2022-29464) exploit and writeup.

cve-2023-21716

A vulnerability within Microsoft Office's wwlib allows attackers to achieve remote code execution with the privileges of the victim that opens a malicious RTF document. The attacker could deliver this file as an email attachment (or other means).

dataextractor

A Burp Suite extension to extract datas from source code while browsing.

decider

A web application that assists network defenders, analysts, and researcher in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

deflate-burp-plugin

The Deflate Burp Plugin is a plug-in for Burp Proxy (it implements the IBurpExtender interface) that decompresses HTTP response content in the ZLIB (RFC1950) and DEFLATE (RFC1951) compression formats.

dnsx

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.