Skip to content
View craSH's full-sized avatar
134 followers · 40 following

Sponsoring

@marcan
@Homas

Achievements

Achievement: YOLOAchievement: Public SponsorAchievement: StarstruckAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx2

Achievements

Achievement: YOLOAchievement: Public SponsorAchievement: StarstruckAchievement: Arctic Code Vault ContributorAchievement: Pull Sharkx2

Organizations

@Neg9

Block or report craSH

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Stars

Security

Security Projects
85 repositories

RustScan / RustScan

🤖 The Modern Port Scanner 🤖

Rust 14,977 1,021 Updated Dec 23, 2024

yogeshojha / rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

HTML 7,610 1,150 Updated Nov 12, 2024

projectdiscovery / nuclei

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Go 21,205 2,552 Updated Dec 30, 2024

mandatoryprogrammer / CursedChrome

Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.

JavaScript 1,480 226 Updated Oct 26, 2024

blacklanternsecurity / bbot

The recursive internet scanner for hackers. 🧡

Python 7,444 561 Updated Dec 30, 2024

blacklanternsecurity / enter_the_matrix

ETM enables the creation of detailed attack graphs and figures while calculating the risk associated with your attack narratives. ETM was built keeping NIST recommendations on threat matrices in mi…

C# 25 8 Updated Mar 3, 2023

sekey / sekey

Use Touch ID / Secure Enclave for SSH Authentication!

Rust 2,460 79 Updated Nov 11, 2022

threathunters-io / laurel

Transform Linux Audit logs for SIEM usage

Rust 727 61 Updated Dec 26, 2024

paranoidninja / Boomerang

Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Multiple levels of Pivoting and exposing multiple internal ser…

Go 217 41 Updated Feb 9, 2021

drk1wi / Modlishka

Modlishka. Reverse Proxy.

Go 4,888 884 Updated Apr 19, 2024

cilium / tetragon

eBPF-based Security Observability and Runtime Enforcement

Go 3,712 376 Updated Dec 29, 2024

rabobank-cdc / DeTTECT

Detect Tactics, Techniques & Combat Threats

SCSS 2,085 338 Updated Dec 11, 2024

initstring / evil-ssdp

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

Python 371 69 Updated Nov 27, 2023

krabelize / sshd-hardening-ed25519

SSHD hardening for ed25519 key pairs

24 5 Updated Mar 23, 2021

netbirdio / netbird

Connect your devices into a secure WireGuard®-based overlay network with SSO, MFA and granular access controls.

Go 11,639 536 Updated Dec 30, 2024

wagoodman / dive

A tool for exploring each layer in a docker image

Go 48,764 1,821 Updated Jul 15, 2024

Neo23x0 / Loki

Loki - Simple IOC and YARA Scanner

Python 3,431 585 Updated Nov 25, 2024

tcostam / awesome-command-control

A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assignments.

779 88 Updated Feb 26, 2021

DataDog / stratus-red-team

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Go 1,870 219 Updated Dec 12, 2024

its-a-feature / Mythic

A collaborative, multi-platform, red teaming framework

JavaScript 3,353 433 Updated Dec 28, 2024

CaliDog / certstream-server

Certificate Transparency Log aggregation, parsing, and streaming service written in Elixir

Vue 275 76 Updated Mar 26, 2024

projectdiscovery / interactsh

An OOB interaction gathering server and client library

Go 3,507 376 Updated Dec 30, 2024

Orange-Cyberdefense / GOAD

game of active directory

PowerShell 5,702 792 Updated Dec 24, 2024

aress31 / jwtcat

A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.

Python 293 48 Updated May 3, 2024

jhaals / yopass

Secure sharing of secrets, passwords and files

Go 1,915 295 Updated Dec 30, 2024

BishopFox / cloudfoxable

Create your own vulnerable by design AWS penetration testing playground

Python 341 34 Updated May 23, 2024

assetnote / surf

Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable SSRF candidates.

Go 609 44 Updated Dec 19, 2023

awslabs / threat-composer

A simple threat modeling tool to help humans to reduce time-to-value when threat modeling

TypeScript 494 65 Updated Dec 18, 2024

aws / aws-imds-packet-analyzer

Python 123 16 Updated Dec 9, 2024

DragoQCC / HardHatC2

A C# Command & Control framework

C# 966 127 Updated Mar 28, 2024