Nico's Projects
PHP reverse shell script. Works on Linux OS, macOS, and Windows OS.
netshell features all in version 2 powershell
PowerShell for every system!
Scripts created to help with post exploitation of a Windows host
PowerSploit - A PowerShell Post-Exploitation Framework
A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
Curated list of public penetration test reports released by several consulting firms and academic security groups
Python decoder for Mode S and ADS-B signals
General purpose Synthetic Aperture Radar (SAR) postprocessing software package
Spectrum Analyzer for Android using the HackRF
Modified Osmocom drivers with enhancements for RTL-SDR Blog V3 units.
A Linux installation script to easily install and enable the bias tee from an "RTL-SDR Blog V3" USB dongle to power the "RTL-SDR Blog ADS-B Triple Filtered LNA".
Trying to tame the three-headed dog.
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Checks running processes, process metadata, Dlls loaded into your current process and the each DLLs metadata, common install directories, installed services and each service binaries metadata, installed drivers and each drivers metadata, all for the presence of known defensive products such as AV's, EDR's and logging tools.
PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
Fast subdomains enumeration tool for penetration testers
Provides an improved webinterface for use with ADS-B decoders readsb / dump1090-fa
JSON RSA to HMAC and None Algorithm Vulnerability POC
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
The goal of this repository is to document the most common techniques to bypass AppLocker.
Material for 2021 UN Open GIS Challenge 1 - Training on Satellite Data Analysis and Machine Learning with QGIS (Satellite_QGIS)
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
windows-kernel-exploits Windows平台提权漏洞集合
WhiteWinterWolf's PHP web shell