IT Security Alerts
This channel posts IT security related topics and especially alerts. Submissions over at @itsectalk welcome!
t.me
Security News - Technical
Technical security news @techpwnews - Technical security news @pwnnews - General security news
t.me
Malware Research
Group for Malware Analysts. Pinned message with resources and rules: https://t.me/MalwareResearch/38033
t.me
Cyber Hunter
❗️We Do Not Support, Encourage & Promote Any illegal Activity. Contact For Paid Promotion:-https://instagram.com/cyb3rhunterx
t.me
GitHub - mar10/wsgidav: A generic and extendable WebDAV server based on WSGI
A generic and extendable WebDAV server based on WSGI - mar10/wsgidav
github.com
msinttypes/stdint.h at master · chemeris/msinttypes
Automatically exported from code.google.com/p/msinttypes - chemeris/msinttypes
github.com
GitHub - vletoux/NTLMInjector: In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)
In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync) - vletoux/NTLMInjector
github.com
AggressorCollection/harleyQu1nn/logvis.cna at master · invokethreatguy/AggressorCollection
Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors - invokethreatguy/AggressorCollection
github.com
GitHub - bluscreenofjeff/Red-Team-Infrastructure-Wiki: Wiki to collect Red Team infrastructure hardening resources
Wiki to collect Red Team infrastructure hardening resources - bluscreenofjeff/Red-Team-Infrastructure-Wiki
github.com
GitHub - vysecurity/Invoke-ProcessScan: Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes. - vysecurity/Invoke-ProcessScan
github.com
Aggressor-VYSEC/ping.cna at master · vysecurity/Aggressor-VYSEC
Contribute to vysecurity/Aggressor-VYSEC development by creating an account on GitHub.
github.com
GitHub - ryhanson/phishery: An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector
An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector - ryhanson/phishery
github.com
GitHub - vysecurity/morphHTA: morphHTA - Morphing Cobalt Strike's evil.HTA
morphHTA - Morphing Cobalt Strike's evil.HTA. Contribute to vysecurity/morphHTA development by creating an account on GitHub.
github.com
RouterOS_Tools/winbox-extract-passwords.py at master · jabb3rd/RouterOS_Tools
RouterOS security testing tools. Contribute to jabb3rd/RouterOS_Tools development by creating an account on GitHub.
github.com
scripts-nse/README.md at master · danilabs/scripts-nse
Some NSE scripts to search information from routers - danilabs/scripts-nse
github.com
GitHub - sixdub/DomainTrustExplorer: Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.
Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output. - GitHub - sixdub/DomainTrustExplorer: Python script for analyis ...
github.com
GitHub - wiire-a/pixiewps: An offline Wi-Fi Protected Setup brute-force utility
An offline Wi-Fi Protected Setup brute-force utility - wiire-a/pixiewps
github.com
GitHub - Arvanaghi/SessionGopher: SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or loca
SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be r...
github.com
GitHub - rsmudge/ZeroLogon-BOF
Contribute to rsmudge/ZeroLogon-BOF development by creating an account on GitHub.
github.com
AggressorScripts/logvis.cna at master · harleyQu1nn/AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources - harleyQu1nn/AggressorScripts
github.com
WSUSpendu/WSUSpendu.ps1 at master · AlsidOfficial/WSUSpendu
Implement WSUSpendu attack. Contribute to AlsidOfficial/WSUSpendu development by creating an account on GitHub.
github.com
Mystique/Mystique.ps1 at master · machosec/Mystique
PowerShell module to play with Kerberos S4U extensions - machosec/Mystique
github.com
GitHub - Cn33liz/StarFighters: A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host. - Cn33liz/StarFighters
github.com
GitHub - rofl0r/endianness.h: simple public domain header to get endianess at compile time on a variety of platforms
simple public domain header to get endianess at compile time on a variety of platforms - rofl0r/endianness.h
github.com
mgeeky - Overview
🔴 Red Team operator. 👾 Windows malware afficionado. 🛡️ Securing the world by stealing cyber criminals' operation theater - mgeeky
github.com
PowerSploit/Mayhem/Mayhem.psm1 at master · PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework - PowerShellMafia/PowerSploit
github.com
GitHub - secretsquirrel/the-backdoor-factory: Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors - secretsquirrel/the-backdoor-factory
github.com
GitHub - dafthack/PowerMeta: PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files from the target domai
PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those fil...
github.com
AggressorScripts/leave_no_trace.cna at master · ramen0x3f/AggressorScripts
Contribute to ramen0x3f/AggressorScripts development by creating an account on GitHub.
github.com
Aggressor-VYSEC/vnc-psh.cna at master · vysecurity/Aggressor-VYSEC
Contribute to vysecurity/Aggressor-VYSEC development by creating an account on GitHub.
github.com
GitHub - laramies/theHarvester: E-mails, subdomains and names Harvester - OSINT
E-mails, subdomains and names Harvester - OSINT . Contribute to laramies/theHarvester development by creating an account on GitHub.
github.com
GitHub - S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet: A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory. - S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
github.com
GitHub - EmpireProject/EmPyre: A post-exploitation OS X/Linux agent written in Python 2.7
A post-exploitation OS X/Linux agent written in Python 2.7 - EmpireProject/EmPyre
github.com
GitHub - vysecurity/genHTA: Generates anti-sandbox analysis HTA files without payloads
Generates anti-sandbox analysis HTA files without payloads - vysecurity/genHTA
github.com
Aggressor-VYSEC/auto-prepenv.cna at master · vysecurity/Aggressor-VYSEC
Contribute to vysecurity/Aggressor-VYSEC development by creating an account on GitHub.
github.com
GitHub - rsmudge/vncdll: Stand-alone VNC server compiled as a Reflective DLL
Stand-alone VNC server compiled as a Reflective DLL - rsmudge/vncdll
github.com
GitHub - threatexpress/domainhunter: Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names - threatexpress/domainhunter
github.com
AggressorScripts/Ps-highlight at master · oldb00t/AggressorScripts
Cobaltstrike Aggressor Scripts . Contribute to oldb00t/AggressorScripts development by creating an account on GitHub.
github.com
GitHub - klsecservices/Invoke-Vnc: Powershell VNC injector
Powershell VNC injector. Contribute to klsecservices/Invoke-Vnc development by creating an account on GitHub.
github.com
GitHub - fmtn/a: ActiveMQ CLI testing and message management
ActiveMQ CLI testing and message management. Contribute to fmtn/a development by creating an account on GitHub.
github.com
GitHub - ezelf/CVE-2018-9995_dvr_credentials: (CVE-2018-9995) Get DVR Credentials
(CVE-2018-9995) Get DVR Credentials. Contribute to ezelf/CVE-2018-9995_dvr_credentials development by creating an account on GitHub.
github.com
Aggressor-VYSEC/Invoke-CredLeak.ps1 at master · vysecurity/Aggressor-VYSEC
Contribute to vysecurity/Aggressor-VYSEC development by creating an account on GitHub.
github.com
scripts/Invoke-SMBAutoBrute.ps1 at master · shellntel-acct/scripts
Contribute to shellntel-acct/scripts development by creating an account on GitHub.
github.com
GitHub - 0x27/CiscoRV320Dump: CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!
CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit! - 0x27/CiscoRV320Dump
github.com
Lateral Movement with the MMC20.Application COM Object (Aggressor Script Alias)
Lateral Movement with the MMC20.Application COM Object (Aggressor Script Alias) - comexec.cna
gist.github.com
GitHub - hfiref0x/UACME: Defeating Windows User Account Control
Defeating Windows User Account Control. Contribute to hfiref0x/UACME development by creating an account on GitHub.
github.com
GitHub - sensepost/mana: *DEPRECATED* mana toolkit for wifi rogue AP attacks and MitM
*DEPRECATED* mana toolkit for wifi rogue AP attacks and MitM - sensepost/mana
github.com
scripts-nse/README.md at master · danilabs/scripts-nse
Some NSE scripts to search information from routers - danilabs/scripts-nse
github.com
GitHub - Raikia/FiercePhish: FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.
FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more. - Raikia/FierceP...
github.com
Misc-Powershell-Scripts/Get-BrowserData.ps1 at master · rvrsh3ll/Misc-Powershell-Scripts
Random Tools. Contribute to rvrsh3ll/Misc-Powershell-Scripts development by creating an account on GitHub.
github.com
GitHub - HaraldWalker/user-agent-utils: Utilities for processing user-agent strings. Can be used to handle http requests in real-time or to analyze log files.
Utilities for processing user-agent strings. Can be used to handle http requests in real-time or to analyze log files. - GitHub - HaraldWalker/user-agent-utils: Utilities for processing user-agent...
github.com
Misc-PowerShell/Invoke-WdigestDowngrade.ps1 at master · HarmJ0y/Misc-PowerShell
Misc. PowerShell scripts. Contribute to HarmJ0y/Misc-PowerShell development by creating an account on GitHub.
github.com
GitHub - NetSPI/PowerUpSQL: PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server - NetSPI/PowerUpSQL
github.com
GitHub - libtom/libtomcrypt: LibTomCrypt is a fairly comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo-random num
LibTomCrypt is a fairly comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining ...
github.com
GitHub - libssh2/libssh2: the SSH library
the SSH library. Contribute to libssh2/libssh2 development by creating an account on GitHub.
github.com
GitHub - natevw/ipcalf: Gives back your public IP address in plain HTML, plain text, and JSON (w/CORS!)
Gives back your public IP address in plain HTML, plain text, and JSON (w/CORS!) - natevw/ipcalf
github.com
GitHub - leechristensen/UnmanagedPowerShell: Executes PowerShell from an unmanaged process
Executes PowerShell from an unmanaged process. Contribute to leechristensen/UnmanagedPowerShell development by creating an account on GitHub.
github.com
GitHub - thoemmi/7Zip4Powershell: Powershell module for creating and extracting 7-Zip archives
Powershell module for creating and extracting 7-Zip archives - thoemmi/7Zip4Powershell
github.com
GitHub - Mr-Un1k0d3r/CatMyPhish: Search for categorized domain
Search for categorized domain. Contribute to Mr-Un1k0d3r/CatMyPhish development by creating an account on GitHub.
github.com
danielbohannon - Overview
Principal Applied Security Researcher (prev IR Consultant) - danielbohannon
github.com
test1/PSV/Test_PSV-2018-0074.py at b4e4c6a29aba177b9272724a4a09e5920ab6dec4 · cloud-sw-zhang/test1
test ssh. Contribute to cloud-sw-zhang/test1 development by creating an account on GitHub.
github.com
Misc-Powershell-Scripts/RunAs.ps1 at master · rvrsh3ll/Misc-Powershell-Scripts
Random Tools. Contribute to rvrsh3ll/Misc-Powershell-Scripts development by creating an account on GitHub.
github.com
GitHub - libtom/tomsfastmath: TomsFastMath is a fast public domain, open source, large integer arithmetic library written in portable ISO C.
TomsFastMath is a fast public domain, open source, large integer arithmetic library written in portable ISO C. - libtom/tomsfastmath
github.com
GitHub - proxytunnel/proxytunnel: Stealth tunneling through HTTP(S) proxies
Stealth tunneling through HTTP(S) proxies. Contribute to proxytunnel/proxytunnel development by creating an account on GitHub.
github.com
GitHub - 0x09AL/WordSteal: This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does not keep responsibility for any illegal action you do.
This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does not keep responsibility for any illegal action you do. - GitH...
github.com
nishang/Backdoors/Invoke-ADSBackdoor.ps1 at master · samratashok/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security. - samratashok/nishang
github.com
PowerSploit/Exfiltration/Out-Minidump.ps1 at master · PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework - PowerShellMafia/PowerSploit
github.com
How to add a popup handler to a Swing component in Aggressor Script/Sleep
How to add a popup handler to a Swing component in Aggressor Script/Sleep - mouse.cna
gist.github.com
GitHub - Mr-Un1k0d3r/SCT-obfuscator: Cobalt Strike SCT payload obfuscator
Cobalt Strike SCT payload obfuscator. Contribute to Mr-Un1k0d3r/SCT-obfuscator development by creating an account on GitHub.
github.com
GitHub - p0w3rsh3ll/AutoRuns: 🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitimate programs as well as malware to achieve persistence.
🚀AutoRuns is a PowerShell module that will help do live incident response and enumerate autoruns artifacts that may be used by legitimate programs as well as malware to achieve persistence. - p0w3...
github.com
external-nse-script-library/http-vuln-cve2018-10824.nse at 664a7b5891251051b910bdaf76f396e250d33348 · cldrn/external-nse-script-library
External NSE script library (Collection of unofficial scripts) - Feel free to submit your NSE scripts! - cldrn/external-nse-script-library
github.com
GitHub - t6x/reaver-wps-fork-t6x
Contribute to t6x/reaver-wps-fork-t6x development by creating an account on GitHub.
github.com
GitHub - stephenfewer/ReflectiveDLLInjection: Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.
Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process. - stephenfe...
github.com