e1abrador's Repositories

4-ZERO-3

403/401 Bypass Methods + Bash Automation + Your Support ;)

⭐ 0 🌐 Public

40k-nuclei-templates

40,000+ Nuclei templates for security scanning and detection across diverse web applications and services

⭐ 1 🌐 Public

adPEAS

Powershell tool to automate Active Directory enumeration.

⭐ 0 🌐 Public

ANSIrem

Tool to remove ANSI characters from text files.

⭐ 0 🌐 Public

AORT

All in One Recon Tool for Bug Bounty

⭐ 0 🌐 Public

arpchat

Answering the question nobody asked: what if you wanted to text your friends using only ARP?

⭐ 0 🌐 Public

authz0

🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.

⭐ 0 🌐 Public

AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

⭐ 0 🌐 Public

autoRPC

Tool to automate Windows RPC enumeration.

⭐ 1 🌐 Public

awesome-bugbounty-builder

Awesome Bug bounty builder Project

⭐ 0 🌐 Public

bambdas

Bambdas collection for Burp Suite Professional and Community.

⭐ 0 🌐 Public

BaseEncoder

A collection of PowerShell functions for converting byte arrays to text and vice-versa.

⭐ 0 🌐 Public

bashgf

Bash version from Tomnomnom's gf tool.

⭐ 3 🌐 Public

BeVigil-OSINT-CLI

bevigil-cli provides a unified command line interface and python library for using BeVigil OSINT API.

⭐ 0 🌐 Public

BloodHound

Six Degrees of Domain Admin

⭐ 0 🌐 Public

BloodHound.py

A Python based ingestor for BloodHound

⭐ 0 🌐 Public

BloodHoundQueries

No description

⭐ 0 🌐 Public

burp-copy-as-ffuf

Burp Extension that copies a request and builds a FFUF skeleton

⭐ 0 🌐 Public

Burp-Encode-IP

Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.

⭐ 45 🌐 Public

Burp-headerSnipper

Burp extension used to snip any header from all the requests.

⭐ 23 🌐 Public

Burp-Hunter

XSS Hunter Burp Plugin

⭐ 0 🌐 Public

Burp-IP-Tracker

Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.

⭐ 25 🌐 Public

Burp-UUID-Decoder

No description

⭐ 0 🌐 Public

burpFakeIP

服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件

⭐ 0 🌐 Public

Burp_Match-Replace

Match&Replace for Repeater

⭐ 1 🌐 Public

byp4xx

Pyhton script for HTTP 40X responses bypassing. Features: Verb tampering, headers, #bugbountytips tricks and 2454 User-Agents.

⭐ 0 🌐 Public

Chimera

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

⭐ 0 🌐 Public

Ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

⭐ 0 🌐 Public

CISA---ICSJWG

My ICSJWG certifications

⭐ 0 🌐 Public

CloudFail

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

⭐ 0 🌐 Public

Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

⭐ 0 🌐 Public

commix

Automated All-in-One OS Command Injection Exploitation Tool.

⭐ 0 🌐 Public

CrackMapExec

A swiss army knife for pentesting networks

⭐ 0 🌐 Public

Crackmapexec-custom-modules

Crackmapexec custom scripts used in my internal pentests.

⭐ 25 🌐 Public

CRLFsuite

The most powerful CRLF injection (HTTP Response Splitting) scanner.

⭐ 0 🌐 Public

crossfeed

External monitoring for organization assets

⭐ 0 🌐 Public

crtndstry

Yet another subdomain finder

⭐ 0 🌐 Public

dastardly-github-action

Runs a scan using Dastardly by Burp Suite against a target site and creates a JUnit XML report for the scan on completion.

⭐ 0 🌐 Public

dns-poisoning-check

Small script to detect if a domain is vulnerable to DNS Poisoning (thanks to Assetnote research).

⭐ 2 🌐 Public

DNSCewl

A DNS Bruteforcing Wordlist Generator

⭐ 0 🌐 Public

dnsvalidator

Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

⭐ 0 🌐 Public

dnsx

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

⭐ 0 🌐 Public

domain_hunter_pro

domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等

⭐ 0 🌐 Public

duckencoder.py

Python port of infamous duckencoder for RubberDucky

⭐ 0 🌐 Public

DumpSMBShare

A script to dump files and folders remotely from a Windows SMB share.

⭐ 0 🌐 Public

e1abrador

No description

⭐ 0 🌐 Public

e1abrador.github.io

No description

⭐ 0 🌐 Public

EvilnoVNC

Ready to go Phishing Platform

⭐ 0 🌐 Public

extended-ssrf-search

Smart ssrf scanner using different methods like parameter brute forcing in post and get...

⭐ 0 🌐 Public

femida

Automated blind-xss search for Burp Suite

⭐ 0 🌐 Public

fuzzuli

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

⭐ 2 🌐 Public

GAP-Burp-Extension

Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

⭐ 0 🌐 Public

Ghostpack-CompiledBinaries

Compiled Binaries for Ghostpack (.NET v4.0)

⭐ 0 🌐 Public

github-dorks

Find leaked secrets via github search

⭐ 0 🌐 Public

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

⭐ 0 🌐 Public

hacktricks-cloud

No description

⭐ 0 🌐 Public

hakoriginfinder

Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!

⭐ 0 🌐 Public

hakrevdns

Small, fast tool for performing reverse DNS lookups en masse.

⭐ 0 🌐 Public

heroku-node

No description

⭐ 0 🌐 Public

hoaxshell

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

⭐ 0 🌐 Public

HostHunter

HostHunter a recon tool for discovering hostnames using OSINT techniques.

⭐ 0 🌐 Public

html-only-chat

Async web chat without JavaScript in browser

⭐ 0 🌐 Public

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

⭐ 0 🌐 Public

httpx

httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.

⭐ 0 🌐 Public

icmpsh

Simple reverse ICMP shell

⭐ 0 🌐 Public

impacket

Impacket is a collection of Python classes for working with network protocols.

⭐ 0 🌐 Public

Inline-Execute-PE

Execute unmanaged Windows executables in CobaltStrike Beacons

⭐ 0 🌐 Public

Internal_Pentest

Scripts that automate portions of pentests.

⭐ 0 🌐 Public

Inveigh

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

⭐ 0 🌐 Public

Invoke-Obfuscation

PowerShell Obfuscator

⭐ 0 🌐 Public

Invoke-SharpLoader

No description

⭐ 0 🌐 Public

ItWasAllADream

A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE

⭐ 0 🌐 Public

Jellypeg

Tool to inject code into JPEG that has been stuffed through imagecreatefromjpeg in PHP

⭐ 0 🌐 Public

joanbono

No description

⭐ 0 🌐 Public

keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

⭐ 0 🌐 Public

king-phisher

Phishing Campaign Toolkit

⭐ 0 🌐 Public

microsubs

A collection of code for interacting with API sources directly to improve your understanding of those services.

⭐ 0 🌐 Public

mimikatz

A little tool to play with Windows security

⭐ 0 🌐 Public

mobile-nuclei-templates

No description

⭐ 0 🌐 Public

MobileHackingCheatSheet

Basics on commands/tools/info on how to assess the security of mobile applications

⭐ 0 🌐 Public

MostCommonWebPorts

Most popular HTTP/S ports extracted from Shodan through scraping

⭐ 0 🌐 Public

mubeng

An incredibly fast proxy checker & IP rotator with ease.

⭐ 0 🌐 Public

my-scripts

No description

⭐ 0 🌐 Public

Neo-reGeorg

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

⭐ 0 🌐 Public

nessus_parser

Nessus Parser

⭐ 0 🌐 Public

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

⭐ 0 🌐 Public

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

⭐ 0 🌐 Public

O365-Doppelganger

A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user

⭐ 0 🌐 Public

OneForAll

OneForAll是一款功能强大的子域收集工具

⭐ 0 🌐 Public

OSCE-Complete-Guide

OSWE, OSEP, OSED

⭐ 0 🌐 Public

oxml_xxe

A tool for embedding XXE/XML exploits into different filetypes

⭐ 0 🌐 Public

penelope

Penelope Shell Handler

⭐ 0 🌐 Public

PEzor

Open-Source Shellcode & PE Packer

⭐ 0 🌐 Public

polyglot-database

Database of polyglot files. By polyglot, we mean files readable in multiple formats

⭐ 0 🌐 Public

PowerChunker

Bypass AMSI via PowerShell by splitting a file into multiple chunks

⭐ 0 🌐 Public

PowerSharpPack

No description

⭐ 0 🌐 Public

pretender

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

⭐ 0 🌐 Public

rastreator

Tool with a collection of query files to explore Microsoft Active Directory

⭐ 0 🌐 Public

ReconDashboard

Web application containing multiple recon tools all in one easy to use dashboard. This tool requires Aquatone, sslscan and Nmap to be installed.

⭐ 0 🌐 Public

reconMail

Herramienta OSINT para recolectar correos electrónicos, ideal para BugBountys, Pentesting, Hackers Éticos, REDTEAM, etc

⭐ 0 🌐 Public