breakthenet's Repositories

apt2

automated penetration toolkit

⭐ 1 🌐 Public

Awesome-Hacking

A collection of various awesome lists for hackers, pentesters and security researchers

⭐ 5 🌐 Public

Bella

A pure python, post-exploitation, data mining tool and remote administration tool for macOS.

⭐ 1 🌐 Public

bettercap

A complete, modular, portable and easily extensible MITM framework.

⭐ 1 🌐 Public

botnets

This is a collection of #botnet source codes, unorganized. For EDUCATIONAL PURPOSES ONLY

⭐ 2 🌐 Public

collisions

Hash collisions

⭐ 0 🌐 Public

CSS-Keylogging

Chrome extension and Express server that exploits keylogging abilities of CSS.

⭐ 0 🌐 Public

css3-side-channel-attack

https://www.evonide.com/side-channel-attacking-browsers-through-css3-features/

⭐ 0 🌐 Public

CTF-SQL-Injection-AuthCode

SQL Injection bypass auth code challenge - single button deploy, just set your custom CTF Flag in the setup process!

⭐ 2 🌐 Public

CTF-SQL-Injection-Login

SQL Injection login as admin challenge - single button deploy, just set your custom CTF Flag in the setup process!

⭐ 2 🌐 Public

CTF-SQL-Truncation

SQL Truncation challenge - single button deploy, just set your custom CTF Flag in the setup process!

⭐ 1 🌐 Public

CTF-Wordpress-Metasploit

No description

⭐ 2 🌐 Public

CTF-XSS

XSS cookie stealing challenge - single button deploy, just set your custom CTF Flag in the setup process!

⭐ 7 🌐 Public

cve

Gather and update all available and newest CVEs with their PoC.

⭐ 0 🌐 Public

dns2proxy

Offensive DNS server

⭐ 0 🌐 Public

dnsd

Dynamic authoritative name server

⭐ 0 🌐 Public

dref

DNS Rebinding Exploitation Framework

⭐ 0 🌐 Public

DVCS-Pillage

Pillage web accessible GIT, HG and BZR repositories

⭐ 0 🌐 Public

FakeDns

A regular-expression based python MITM DNS server with support for DNS Rebinding attacks

⭐ 1 🌐 Public

GPON

Exploit for Remote Code Execution on GPON home routers (CVE-2018-10562) written in Python. Initially disclosed by VPNMentor (https://www.vpnmentor.com/blog/critical-vulnerability-gpon-router/), kudos for their work.

⭐ 0 🌐 Public

hacking_slot_machines

Hacking slot machines.

⭐ 2 🌐 Public

HackMe-File-Upload-Challenges

Hack your friend's online MMORPG game - specific focus, php file upload scripts

⭐ 99 🌐 Public

HackMe-Social-Engineering-Challenges

Help a buddy prank his colleagues! Show your mettle with spoofing emails, malicious attachments, spoofing sms, and spoofing phone calls to get access to voicemail

⭐ 100 🌐 Public

HackMe-SQL-Injection-Challenges

Pen test your "friend's" online MMORPG game - specific focus, sql injection opportunities

⭐ 418 🌐 Public

HackMe-XSS-CSRF-Challenges

Hack your friend's online MMORPG game - specific focus, csrf/xss attacks

⭐ 91 🌐 Public

heroku-buildpack-phantomjs

No description

⭐ 0 🌐 Public

HM-DNS

No description

⭐ 0 🌐 Public

jaqen

Jaqen - Simple DNS rebinding

⭐ 0 🌐 Public

kalirouter

intercepting kali router

⭐ 1 🌐 Public

lan-js

Probe LAN devices from a web browser.

⭐ 0 🌐 Public

Markdown-XSS-Payloads

XSS payloads for exploiting Markdown syntax

⭐ 0 🌐 Public

phpdns

DNS API / Library for PHP - www.purplepixie.org/phpdns/

⭐ 0 🌐 Public

PoCs

A list of CVE's with Proof of Concepts

⭐ 0 🌐 Public

Python-dsstore

A library for parsing .DS_Store files and extracting file names

⭐ 0 🌐 Public

rbndr

Simple DNS Rebinding Service

⭐ 1 🌐 Public

SecGen

Create randomly insecure VMs

⭐ 0 🌐 Public

sonar.js

A framework for identifying and launching exploits against internal network hosts. Works via WebRTC IP enumeration combined with WebSockets and external resource fingerprinting.

⭐ 0 🌐 Public

Tools-and-Techniques

A repository of knowledge accumulated that may help in the other BTN challenge repos

⭐ 13 🌐 Public

trackerjacker

Like nmap for mapping wifi networks you're not connected to, plus device tracking

⭐ 2 🌐 Public

UhOh365

A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is unthrottled, and is incredibly useful for social engineering assessments to find which emails exist and which don't.

⭐ 0 🌐 Public

vuejs-serverside-template-xss

Demo of a Vue.js app that mixes both clientside templates and serverside templates leading to an XSS vulnerability

⭐ 0 🌐 Public

wifi-cracking

Crack WPA/WPA2 Wi-Fi Routers with Airodump-ng and Aircrack-ng/Hashcat 🖧

⭐ 0 🌐 Public

wpsploit

WPSploit - Exploiting Wordpress With Metasploit

⭐ 1 🌐 Public

xss-keylogger

A keystroke logger to exploit XSS vulnerabilities in a site - for my personal Educational purposes only

⭐ 0 🌐 Public