731 Open source projects that are alternatives of or similar to Jiraffe

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

🌒 Shell command obfuscation to avoid detection systems

Microarchitectural exploitation and other hardware attacks.

Responsive Command and Control System

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Hershell is a simple TCP reverse shell written in Go.

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Monitoring GitLab for sensitive data shared publicly

Monitoring GitHub for sensitive data shared publicly

Monitoring your Slack workspaces for sensitive information

mXtract - Memory Extractor & Analyzer

fireELF - Fileless Linux Malware Framework

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Webshell Manager

Automation for internal Windows Penetrationtest / AD-Security

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Awesome cloud enumerator

LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Binary Exploitation and Reverse-Engineering (from assembly into C)

C# tool to discover low hanging fruits

The essential toolkit for reversing, malware analysis, and cracking

Information Security Library

A memorial site for Hackers and Infosec people who have passed

Fast and customizable vulnerability scanner For JIRA written in Python

This repository contains the tools we used in our research on the Google Titan M chip

Malware Sample Sources

A simple remote scanner for Atlassian Jira

Just another useless C2 occupying space in some HDD somewhere.

Create and update your Jira issues while inside Vim!

Verify that pull request titles start with a ticket ID

Simple message routing system that receives input messages through a webhook interface and can enforce actions using predefined outputs via integrations.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

This repository houses the interactions, consultations and work management to support the maintenance of baselined components of the Consumer Data Right API Standards and Information Security profile.

Additional Resources For Securing The Stack Tutorials

Contextual Bandits in R - simulation and evaluation of Multi-Armed Bandit Policies

transmit cs beacon (shellcode) over self-made dns to avoid anti-kill and AV

Python ticketing utility for working with tickets in popular tools

GoPhish Templates that I have retired and/or templates I've recreated.

Turn your VPS into an attack box

Multi-threaded Padding Oracle attacks against any service. Written in Rust.

Spin up new Windows qubes quickly, effortlessly and securely on Qubes OS

A lightweight CLI tool that finds system calls being called inside golang applications.

JIRA Client for Bash Scripts

Reporting in a Google Sheet on a Sprint level using JIRA REST API

Some of my public exploits

Related subdomains finder

ShellCodeLoader via DInvoke

An intelligent React component to obfuscate any contact link!

Jiraya - Simple Jira CLI

A schema and set of tools for using SQL to query cloud infrastructure.