strunz983 Goto Github PK

kimi

Script to generate malicious debian packages (debain trojans).

kingofbugbountytips

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

knock

Knock Subdomain Scan

krackattacks-scripts

lantester

A python tool for performing basic first-hop LAN attacks such as DHCP starvation, ARP spoofing, DNS poisoning and more.

leviathan

wide range mass audit toolkit

linenum

Scripted Local Linux Enumeration & Privilege Escalation Checks

linux-exploit-suggester

Linux privilege escalation auditing tool

linux-hardening-checklist

Simple checklist to help you deploying the most important areas of the GNU/Linux production systems - work in progress.

lower-alpha-keyspace-reducer

Outputs a reduced keyspace of 8 lower alpha chars.

macroshop

Collection of scripts to aid in delivering payloads via Office Macros. Most are python. See http://khr0x40sh.wordpress.com for details.

macro_pack

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of MS Office documents, VB scripts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation.

massdns

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

meterssh

MeterSSH is a way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. The way it works is by injecting shellcode into memory, then wrapping a port spawned (meterpeter in this case) by the shellcode over SSH back to the attackers machine. Then connecting with meterpreter's listener to localhost will communicate through the SSH proxy, to the victim through the SSH tunnel. All communications are relayed through the SSH tunnel and not through the network.

mitmf

Framework for Man-In-The-Middle attacks

morpheus

Morpheus - Automated Ettercap TCP/IP Hijacking Tool

movies-for-hackers

🎬 A curated list of movies every hacker & cyberpunk must watch.

mr.sip

SIP-Based Audit and Attack Tool

msfgui

The Metasploit GUI

msfvenom-gui

gui tool to create normal payload by msfvenom

needle

The iOS Security Testing Framework

nessus_pro_cracked

Nessus is one of the many vulnerability scanners used during vulnerability assessments

nmap

Nmap - the Network Mapper. Github mirror of official SVN repository.

nmap-vulners

NSE script based on Vulners.com API

nmapsploit

NmapSploit is a recopilation of Nmap modules and various NSE scripts.

nosqlattack

NoSQLAttack is an open source Python tool to automate exploit MongoDB server IP on Internet and disclose the database data by MongoDB default configuration weaknesses and injection attacks.

nosqlmap

Automated NoSQL database enumeration and web application exploitation tool.

nsa-rules

Password cracking rules and masks for hashcat that I generated from cracked passwords.

nuclei

Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.

nullinux

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.