pavisec Goto Github PK

aveek-saha

I'd ask you to fork, but identity theft is not a joke Jim. Leave a star if you like it.

blackstone

Pentesting Reporting Tool

blueteam-tools

Tools and Techniques for Blue Team / Incident Response

discover

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

enum4linux

enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts

foca

Tool to find metadata and hidden information in the documents.

godgenesis

A Python3 based C2 server to make life of red teamer a bit easier. The payload is capable to bypass all the known antiviruses and endpoints.

hashcat

World's fastest and most advanced password recovery utility

john

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

lazagne

Credentials recovery project

lnkbomb

Malicious shortcut generator for collecting NTLM hashes from insecure file shares.

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

metagoofil

Metadata harvester

mfasweep

A tool for checking if MFA is enabled on multiple Microsoft Services

mimikatz

net-creds

Sniffs sensitive data from interface or pcap

nmap

Nmap - the Network Mapper. Github mirror of official SVN repository.

onlyfans-scraper

A tool that allows you to print to file all content you are subscribed to on onlyfans including content you have unlocked or has been sent to you in messages.

pavisec

Config files for my GitHub profile.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

roguepotato

Another Windows Local Privilege Escalation from Service Account to System

rottenpotatong

New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.

seatbelt

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

sessiongopher

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

shareenum

Tool to enumerate shares from Windows hosts.

sharpdpapi

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

sharpup

SharpUp is a C# port of various PowerUp functionality.

snaffler

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )