Skip to content
View mhaskar's full-sized avatar
🎯
Focusing
🎯
Focusing
724 followers · 20 following

Achievements

Achievement: Pull Sharkx2Achievement: YOLOAchievement: Starstruckx3Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Pull Sharkx2Achievement: YOLOAchievement: Starstruckx3Achievement: Arctic Code Vault Contributor

Highlights

  • Pro

Block or report mhaskar

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

Showing results

david942j / one_gadget

The best tool for finding one gadget RCE in libc.so.6

Ruby 2,277 148 Updated Dec 17, 2025

0xZDH / o365spray

Username enumeration and password spraying tool aimed at Microsoft O365.

Python 955 115 Updated Nov 6, 2024

dafthack / GraphRunner

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

PowerShell 1,237 151 Updated Jul 22, 2025

rootsecdev / Azure-Red-Team

Azure Security Resources and Notes

PowerShell 1,686 224 Updated Nov 7, 2025

Macmod / godap

A complete terminal user interface (TUI) for LDAP.

Go 847 32 Updated Dec 23, 2025

ly4k / Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Python 3,298 442 Updated Dec 3, 2025

ShutdownRepo / pywhisker

Python version of the C# tool for "Shadow Credentials" attacks

Python 828 101 Updated Sep 16, 2025

GhostPack / Rubeus

Trying to tame the three-headed dog.

C# 4,799 854 Updated Nov 14, 2025

Octoberfest7 / Inline-Execute-PE

Execute unmanaged Windows executables in CobaltStrike Beacons

C 713 106 Updated Mar 4, 2023

VirtualAlllocEx / DEFCON-31-Syscalls-Workshop

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

C 735 106 Updated May 23, 2025

crashdump / venlock

Detect and block introduction of unapproved 3rd party libraries. Typically used in a CI.

Go 1 Updated Aug 17, 2023

iomoath / RedWardenLite

A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.

Python 45 8 Updated Jun 27, 2023

subrose / thorn

🌹 Thorn is an open-source, data privacy vault to store and manage PII in a fully compliant manner.

Go 22 1 Updated Feb 14, 2024

WKL-Sec / HiddenDesktop

HVNC for Cobalt Strike

C 1,294 199 Updated Dec 7, 2023

ReversecLabs / awspx

A graph-based tool for visualizing effective access and resource relationships in AWS environments.

Python 988 105 Updated Oct 4, 2022

arijitdirghangi / Find-Hardcoded

You can find hardcoded Api-Key,Secret,Token Etc..

Shell 78 16 Updated Sep 3, 2022

RhinoSecurityLabs / ccat

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Python 644 109 Updated Nov 21, 2019

secretsquirrel / SigThief

Stealing Signatures and Making One Invalid Signature at a Time

Python 2,350 482 Updated Aug 11, 2021

nettitude / ETWHash

C# POC to extract NetNTLMv1/v2 hashes from ETW provider

C# 260 29 Updated May 10, 2023

horizon3ai / vcenter_saml_login

A tool to extract the IdP cert from vCenter backups and log in as Administrator

Python 525 94 Updated Sep 1, 2023

mstrobel / procyon

Procyon is a suite of Java metaprogramming tools, including a rich reflection API, a LINQ-inspired expression tree API for runtime code generation, and a Java decompiler.

Java 1,156 132 Updated Jun 12, 2022

zhuowei / MacDirtyCowDemo

Get root on macOS 13.0.1 with CVE-2022-46689 (macOS equivalent of the Dirty Cow bug), using the testcase extracted from Apple's XNU source.

C 410 36 Updated Dec 21, 2022

matterpreter / OffensiveCSharp

Collection of Offensive C# Tooling

C# 1,466 255 Updated Feb 6, 2023

VladRico / apache2_BackdoorMod

A backdoor module for Apache2

C 200 50 Updated Jan 17, 2020

KINGSABRI / ServerlessRedirector

Serverless Redirector in various cloud vendor for red team

Python 73 10 Updated Dec 8, 2022

Yaxser / Backstab

A tool to kill antimalware protected processes

C 1,492 250 Updated Jun 19, 2021

mgeeky / PackMyPayload

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

Python 1,058 163 Updated Jun 10, 2024

wavestone-cdt / EDRSandblast

C 1,768 308 Updated Aug 30, 2024

projectdiscovery / nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Go 26,238 3,020 Updated Dec 23, 2025

projectdiscovery / nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

JavaScript 11,710 3,254 Updated Dec 24, 2025
Next