HackGit

2022-08-30 10:10:01 ​​Commit Stream

commit-stream drinks commit logs from the Github event firehose exposing the author details (name and email address) associated with Github repositories in real time.

#OSINT / Recon uses for Redteamers / Bug bounty hunters:

Uncover repositories which employees of a target company is commiting code (filter by email domain)
Identify repositories belonging to an individual (filter by author name)
Chain with other tools such as trufflehog to extract secrets in uncovered repositories.

Defenders may find the tool useful to discover repositories that employees are committing intellectual property to.

https://github.com/robhax/commit-stream

t.me/hackgit Открыть/Комментировать

2022-08-30 10:10:00 ​​0xdork

Google dorking tool.

Google hacking, also named Google dorking, is a hacker technique that uses Google Search and other Google applications to find security holes in the configuration and computer code that websites are using. Google dorking could also be used for OSINT(Open Source Intelligence).

https://github.com/rly0nheart/oxdork

@HackGit Открыть/Комментировать

2022-08-29 18:18:01 ​​Microsoft-eventlog-mindmap

Microsoft eventlog mindmap provides an overview on well-known Microsoft products and solutions, as well as their auditing capacities. It enables defenders to enhance visibility on monitored environments for purposes like:

Log collection (eg: into a SIEM)
Threat hunting
Incident response
Forensic
Troubleshooting

https://github.com/mdecrevoisier/Microsoft-eventlog-mindmap

@HackGit Открыть/Комментировать

2022-08-29 18:18:00 ​​Shellcrypt

A single-file cross-platform quality of life tool to obfuscate a given shellcode file and output in a useful format for pasting directly into your source code.

https://github.com/iilegacyyii/Shellcrypt

@HackGit Открыть/Комментировать

2022-08-29 17:17:00 ​​DARKARMY

A Collection Of Penetration Testing Tools, you will have every script that a hacker needs.

https://github.com/D4RK-4RMY/DARKARMY

@HackGit Открыть/Комментировать

2022-08-29 16:16:00 ​​Cyber-Sploit

A framework like a metasploit containg a variety of modules for pentesting or ethical hacking. This repo willl be updated and new modules will be added time to time. This framwork is still under development phase. Those who are intrested for adding new modules can contribute. Mostly modules are written in Python, others may be aded with time (Ruby, GoLang).

https://github.com/Cyber-Dioxide/Cyber-Sploit

@HackGit Открыть/Комментировать

2022-08-29 14:14:01 ​​netbox

NetBox is the leading solution for modeling and documenting modern networks. By combining the traditional disciplines of IP address management (IPAM) and datacenter infrastructure management (DCIM) with powerful APIs and extensions, NetBox provides the ideal "source of truth" to power network automation.

Available as open source software under the Apache 2.0 license, NetBox is employed by thousands of organizations around the world.

https://github.com/netbox-community/netbox

Demo:
https://demo.netbox.dev/ Открыть/Комментировать

2022-08-29 14:14:00 ​​GrabAccess

A tool for bypassing Windows login passwords and Bitlocker.

https://github.com/Push3AX/GrabAccess

t.me/hackgit Открыть/Комментировать

2022-08-29 13:29:29 ​​Ermir

Ermir is an Evil/Rogue RMI Registry, it exploits unsecure deserialization on any Java code calling standard RMI methods on it (list()/lookup()/bind()/rebind()/unbind()).

https://github.com/hakivvi/ermir

t.me/hackgit Открыть/Комментировать

2022-08-29 13:26:43 ​​CVE-2022-38555

Linksys E1200 buffer overflow vulnerability

https://github.com/xxy1126/Vuln/tree/main/1

#cve Открыть/Комментировать