nop-tech / Pentesting
My Collection of exploits, reverse shells, scripts and more
☆11Updated last year
Related projects: ⓘ
- ☆46Updated 2 years ago
- Pwndoc local file inclusion to remote code execution of Node.js code on the server☆46Updated last year
- A repository with my code snippets for research/education purposes.☆51Updated last year
- This map lists the essential techniques to bypass anti-virus and EDR☆15Updated last year
- A small red team course☆32Updated last year
- A solution to create obfuscated shellcode from msfvenom for PowerShell.☆20Updated 2 years ago
- this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)☆77Updated 9 months ago
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆41Updated last year
- ☆38Updated 11 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆38Updated 3 months ago
- Burp Suite Extension for inserting a magic byte into responder's request☆20Updated 11 months ago
- 「🚪」Linux Backdoor based on ICMP protocol☆55Updated 6 months ago
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆47Updated 3 weeks ago
- Ethical Remote Acces Tool Client and Server for W10 and Linux Persist functionality☆49Updated last year
- ☆14Updated 9 months ago
- User enumeration and password spraying tool for testing Azure AD☆67Updated 2 years ago
- ☆19Updated 3 years ago
- All efforts for the AWE course and preparation for the Offensive Security Exploitation Expert (OSEE) exam.☆40Updated 4 years ago
- ☆25Updated 2 years ago
- Brief writeup of post exploitation methodologies.☆17Updated 11 months ago
- F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB☆13Updated last year
- PhantomsGate: Advanced Shellcode Injection Technique☆20Updated 2 months ago
- Encodes a payload within a generated mock-CSS file☆55Updated last year
- 「💥」CVE-2022-33891 - Apache Spark Command Injection☆27Updated 2 years ago
- ☆14Updated 2 years ago
- Malicious powershell scripts loader designed to avoid detection.☆33Updated last year
- Vulnerable Windows Application☆15Updated 9 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB)☆34Updated last month
- ☆24Updated last year
- Arescan is a powerful web directory discovery tool that helps you uncover hidden directories and links on any website. By performing a br…☆29Updated last year