A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Python 2,174 460 Updated Dec 11, 2022

mandiant / flare-fakenet-ng

FakeNet-NG - Next Generation Dynamic Network Analysis Tool

Python 2,025 373 Updated Sep 5, 2025

ptrkrysik / gr-gsm

Gnuradio blocks and tools for receiving GSM transmissions

C++ 1,452 464 Updated Mar 10, 2025

iagox86 / hash_extender

C 1,153 189 Updated Jan 27, 2025

NotMedic / NetNTLMtoSilverTicket

SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket

PowerShell 902 118 Updated Jul 26, 2021

emtunc / SlackPirate

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

Python 773 109 Updated Jan 31, 2025

fox-it / aclpwn.py

Active Directory ACL exploitation with BloodHound

Python 747 107 Updated Nov 18, 2021

mandatoryprogrammer / sonar.js

A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration combined with WebSockets and external resource fingerprinting.

JavaScript 550 78 Updated Nov 6, 2015

frostbits-security / ccat

Cisco Config Analysis Tool

Python 460 102 Updated Apr 23, 2023

lightos / credmap

The Credential Mapper

Python 448 112 Updated Dec 1, 2017

philwantsfish / shard

A command line tool to detect shared passwords

Scala 403 59 Updated Oct 5, 2016

zMarch / Orc

Orc is a post-exploitation framework for Linux written in Bash

Shell 398 53 Updated Nov 12, 2019

doyensec / burpdeveltraining

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

Java 358 73 Updated Oct 14, 2020

cyberark / shimit

A tool that implements the Golden SAML attack

Python 336 56 Updated Oct 15, 2018

ethicalhack3r / wordpress_plugin_security_testing_cheat_sheet

WordPress Plugin Security Testing Cheat Sheet

266 72 Updated Nov 19, 2020

akibsayyed / safeseven

SS7 Assessment Tool

251 119 Updated Nov 14, 2022

pedroSG94 / vlc-example-streamplayer

Example code how to play a stream with VLC

Java 230 93 Updated May 15, 2021

nashcontrol / bounty-monitor

Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains participating in bug bounty programs.

Python 223 50 Updated Dec 7, 2022

lutusp / PLSDR

Software-defined radio application written in Python

Python 163 21 Updated Apr 26, 2020

codexgigassys / codex-backend

Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in malware hunting.

Python 155 38 Updated Dec 20, 2019

glinares / Hephaestus

Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing

95 10 Updated Apr 5, 2017

Gnoxter / mountain_goat

A PoC demonstrating techniques exploiting CVE-2016-5696 Off-Path TCP Exploits: Global Rate Limit Considered Dangerous

C 40 21 Updated Aug 23, 2016

modux / ShortShells

Web shells for PHP/ASP/ASP.NET using the least number of characters

Classic ASP 14 6 Updated Sep 27, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Hans-Michael Varbaek Varbaek

Achievements

Achievements

Block or report Varbaek

Stars

rshipp / awesome-malware-analysis

SpecterOps / BloodHound-Legacy

onlurking / awesome-infosec

RhinoSecurityLabs / pacu

mandiant / flare-floss

secretsquirrel / the-backdoor-factory

s-rah / onionscan

codingo / Reconnoitre