gfoss's Repositories

abuse.ch_ransomware_scraper

Scrapes the indicator lists from abuse.ch's Ransomware Tracker.

⭐ 2 🌐 Public

Python parser for Red Canary's Atomic Red Team Yamls

⭐ 1 🌐 Public

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

⭐ 1 🌐 Public

attacking-drupal

:fire: Scripts used to augment the penetration testing process of Drupal web applications.

⭐ 95 🌐 Public

A pure python, post-exploitation, data mining tool and remote administration tool for macOS.

⭐ 1 🌐 Public

CleanSweep is a simple bash script that probes a range of IP addresses looking for a specific port. Depending on the port number, it will also grab banners and the source of web pages.

⭐ 5 🌐 Public

Dynamically generate and hunt with Lacework LQL queries quickly and efficiently

⭐ 0 🌐 Public

Out-of-the-box CobaltStrike Beacon source code use C++

⭐ 0 🌐 Public

CVE-2021-43326_Exploit

:boom: Automox Windows Agent Privilege Escalation Exploit

⭐ 2 🌐 Public

Empire is a PowerShell and Python post-exploitation agent.

⭐ 2 🌐 Public

A pure python, post-exploitation, RAT (Remote Administration Tool) for macOS / OSX.

⭐ 2 🌐 Public

:rotating_light: PowerShell Philips Hue Integration and Automation

⭐ 8 🌐 Public

:chart_with_upwards_trend: Wrike PowerShell API Integration and Automation

⭐ 4 🌐 Public

:lock: Keybase-Mail.ps1 is a basic wrapper for the windows command-line version of keybase.io

⭐ 10 🌐 Public

Kippo - SSH Honeypot

⭐ 5 🌐 Public

LastPass-xss-payload

XSS payload designed to steal LastPass users' credentials

⭐ 16 🌐 Public

LockBit-Black-Builder

⭐ 0 🌐 Public

:alien: miscellaneous scripts and things...

⭐ 21 🌐 Public

Bypass paywalls and related overlays

⭐ 0 🌐 Public

PowerShell script which allows pausing\unpausing Win32/64 exes

⭐ 1 🌐 Public

phpmyadmin_honeypot

:honey_pot: A simple and effective phpmyadmin honeypot

⭐ 68 🌐 Public

This is a collection of legal wording and documentation used for physical security assessments. The goal is to hopefully allow this as a template for other companies to use and to protect themselves when conducting physical security assessments.

⭐ 1 🌐 Public

:mailbox: The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365

⭐ 8 🌐 Public

⭐ 1 🌐 Public

PowerShell-DL-Exec

:syringe: Download and Execute PowerShell scripts on remote hosts with ease.

⭐ 24 🌐 Public

PowerShell-Honeyport

A powershell script for creating a Windows honeyport.

⭐ 12 🌐 Public

PowerSploit - A PowerShell Post-Exploitation Framework

⭐ 2 🌐 Public

:rocket: PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted data, hashes PowerShell and various system properties, and sends the data off to the security team. The data can be pushed to a share, sent over email, or retained locally.

⭐ 489 🌐 Public

🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️

⭐ 0 🌐 Public

⭐ 1 🌐 Public

:sound: 'Say' for Windows PowerShell

⭐ 2 🌐 Public

SnowFROC_2013_CTF

OWASP - SnowFROC 2013 Capture The Flag

⭐ 4 🌐 Public

subTee-gits-backups

subTee gists code backups

⭐ 1 🌐 Public

A repo containing tools developed by Carbon Black's Threat Research Team: Threat Analysis Unit

⭐ 1 🌐 Public

the-book-of-secret-knowledge

A collection of awesome lists, manuals, blogs, hacks, one-liners, cli/web tools and more. Especially for System and Network Administrators, DevOps, Pentesters or Security Researchers.

⭐ 4 🌐 Public

:trollface: ThreatButt API PowerShell integration for SIEM automation...

⭐ 7 🌐 Public

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

⭐ 1 🌐 Public