Build software better, together

cowrie / cowrie

Cowrie SSH/Telnet Honeypot https://cowrie.readthedocs.io

ssh security honeypot telnet sftp scp attacker threat-sharing threatintel kippo threat-analysis cowrie deception cowrie-ssh telnet-honeypot decoy

Updated Jun 22, 2022
Python

payloadbox / sql-injection-payload-list

Star

🎯 SQL Injection Payload List

injection hacking attacker sql-injection bugbounty payload payloads websecurity owasp-top-10 security-research injection-attacks sql-injection-attacks sql-injection-exploitation sql-injection-proof sql-inject sql-injections sql-injection-filterer sql-injection-attack sql-injection-payloads injection-payloads

Updated May 28, 2022

javiersantos / PiracyChecker

Star

An Android library that prevents your app from being pirated / cracked using Google Play Licensing (LVL), APK signature protection and more. API 14+ required.

verify gradle signature android-library apk attacker lvl apk-signature-protection

Updated Jul 19, 2021
Java

IAmBlackHacker / Facebook-BruteForce

Star

Bruteforce attack on Facebook account using python script

python attacker brute-force-attacks facebook-account facebook-bruteforce

Updated May 18, 2022
Python

cyberark / SkyArk

Star

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

aws cloud powershell azure privileges threat attacker security-tools cloud-security admins

Updated Feb 13, 2022
PowerShell

kabachook / k8s-security

Star

Kubernetes security notes and best practices

kubernetes checklist security best-practices kubernetes-cluster attacker vulnerabilities kubernetes-security

Updated Apr 15, 2022
Shell

LockGit / Hacking

Star

hacker, ready for more of our story ! 🚀

security tools hack attack tool scanner hacking poc attacker vulnerability cracker security-vulnerability vulnerabilities geek hacker attacks hacking-tool vulnerability-scanners security-research

Updated Apr 22, 2021
Python

mpgn / poodle-PoC

Star

🐩 Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 🐩

python cryptography poc attacker poodle padding sslv3

Updated Jul 21, 2020
Python

cyrus-and / mysql-unsha1

Star

Authenticate against a MySQL server without knowing the cleartext password

mysql authentication sniffer password poc attacker sha1 bypass

Updated Apr 16, 2022
C

🐝 DecoyMini•智能仿真与攻击诱捕工具是基于商业化蜜罐产品积累而推出的免费蜜罐工具。工具支持主流操作系统，安装使用简单，通过一键式导入云端仿真模板库就可以在用户网络快速部署多样化的虚假服务和应用；同时支持采用可视化仿真编排引擎通过界面配置即可实现对自定义的网络协议、服务或应用的仿真能力。通过部署虚假的服务和应用，吸引攻击者进行攻击，在虚假环境中对攻击者行为进行抓取和存储，基于对攻击者的行为分析来实现攻击预警、威胁分析和溯源取证；工具加入了云情报分享激励计划，通过情报和仿真模板的分享用户还可以获得丰厚的奖励。

ssh security web simulation ftp telnet attacker hacker hw ti honeytrap deception honeypots honeynet decoy

Updated Jun 21, 2022

Bialomazur / Brutus

Star

Botnet targeting Windows machines written entirely in Python & open source security project.

python cli open-source security hack botnet hacking python3 exploits attacker penetration pentesting hacking-tool it-security ethical-hacking security-tools hacking-tools brutus

Updated Feb 2, 2021
Python

WiPi-Hunter / PiUser

Star

👨‍💻🕵🏻👩‍💻 Analyze user behavior against fake access points📡

security fake wifi attacker pentesting user access-point probe-requests blueteam redteam corporations

Updated Jul 23, 2018
Python

lucadivit / Pcap_Features_Extraction

Star

This program allow you to extract some features from pcap files.

csv pcap malware packet-analyser feature-extraction pca-analysis attacker malware-analysis features packet-filter legitimate-pcap

Updated Sep 19, 2019
Python

sinologicnet / sipcheck

Star

SIPCheck is a tool that watch the authentication of users of Asterisk and bans automatically if some user (or bot) try to register o make calls using wrong passwords.

python firewall attacker asterisk sistema security-tools

Updated Mar 14, 2020
Python

omurugur / OS_Command_Payload_List

Star

OS Command Injection Vulnerability Payload List

script os injection attacker vulnerability payload command-injection os-command-injection

Updated Feb 23, 2021

security-union / going-fishing-with-my-raspberry-pi

Star

raspberry-pi paper honeypot attacker threat-analysis honey-pot interaction-ssh

Updated Aug 25, 2020

MrFalconn / FalconDDoser

Star

Strong DDoser Script

Updated Jan 25, 2022
Python

GuardIran / CloudHound

Star

CloudHound is a cloudflare bypass tool which is using several methods such as DNS history Checkup, Cross-Site port Attack and etc to detect original Server's IP

php ddos cloudflare attacker console-application hacking-tool ddos-tool bypass-cloudflare

Updated Jun 21, 2022
PHP

Yashvendra / reverseShell

Star

Attacker can use the scripts to gain reverse shell of a target's machine.

listen penetration-testing attacker client-server shell-prompt reverseshell command-line-interface victim

Updated Mar 16, 2019
C

carlospolop / KAOSK-backdoors

Sponsor

Star

Automate the creation of Backdoors and postexplotation activities

listener attacker unicorn msfvenom backdoors metasploit backdoors-created metasploit-payloads postexplotation

Updated Jun 20, 2022
Python

cloudsriseup / PoorOperationalSecurityPractices

Star

Deceptive tradecraft should be fun and light, not stern and stressful. It is cool to be cute.

incident-response attacker cracker blueteam certstream red-teams red-teamers purpleteam

Updated Mar 18, 2018
HTML

offensive-terraform / terraform-aws-ebs-snapshot-publicly-exposed

Star

Offensive Terraform module which copies publicly exposed EBS snapshot to us-east-1 region in attacker's AWS account and creates EBS volume from the copied EBS snapshot. After that, the module attaches and mounts the EBS volume to an EC2 instance. Finally, attacker can ssh into an EC2 instance and inspect a mounted volume "/usr/src/hack".

ssh aws ec2 terraform attacker ec2-instance offensive-security cloud-security ebs-volume ebs-snapshot offensiveterraform

Updated Sep 18, 2020
HCL

omurugur / XSS_Payload_List

Star

Cross Site Scripting ( XSS ) Vulnerability Payload List

scanner injection xss attacker vulnerability xss-vulnerability flaws pentesting xss-exploitation attacks xss-payloads vulnerability-payload malicious-scripts

Updated Feb 23, 2021

offensive-terraform / terraform-aws-rds-snapshot-publicly-exposed

Star

Offensive Terraform module which creates RDS database from a publicly exposed RDS snapshot in attacker's AWS account. After that, attacker can connect to RDS database and inspect it.

aws attacker rds-database offensiveterraform