Optiv Source Zero

All

47 repositories

KnockKnock
Public
Enumerate valid users within Microsoft Teams and OneDrive with clean output.
Python
•8•57•0•0•Updated Sep 30, 2024Sep 30, 2024
doppelganger
Public archive
Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of capturing access control card data while performing physical security assessments. Doppelgänger keeps the operator's ease of access, maintenance, and operational communications in mind.
C++
•
MIT License
•9•13•0•0•Updated Jun 14, 2024Jun 14, 2024
OSINT_Encyclopedia
Public
Your go-to resource for all things OSINT
MIT License
•20•155•0•1•Updated Mar 28, 2024Mar 28, 2024
Go365
Public
An Office365 User Attack Tool
Go
•
MIT License
•100•621•5•6•Updated Mar 19, 2024Mar 19, 2024
blemon
Public
Universal BLE Monitoring with Frida (or Objection)
JavaScript
•
MIT License
•13•95•3•1•Updated Nov 13, 2023Nov 13, 2023
Talon
Public archive
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
Go
•
MIT License
•77•431•2•3•Updated Aug 18, 2023Aug 18, 2023
Mangle
Public archive
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs
Go
•
MIT License
•153•1.2k•2•1•Updated Aug 18, 2023Aug 18, 2023
Ivy
Public archive
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.
Go
•
MIT License
•127•739•4•1•Updated Aug 18, 2023Aug 18, 2023
Dent
Public archive
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
Go
•
MIT License
•48•296•0•2•Updated Aug 18, 2023Aug 18, 2023
Freeze.rs
Public archive
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Rust
•
MIT License
•82•709•0•0•Updated Aug 18, 2023Aug 18, 2023
Freeze
Public archive
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Go
•
MIT License
•180•1.4k•5•3•Updated Aug 18, 2023Aug 18, 2023
ScareCrow
Public archive
ScareCrow - Payload creation framework designed around EDR bypass.
Go
•507•2.7k•6•1•Updated Aug 18, 2023Aug 18, 2023
VisualLockPickingWorkstation
Public
The Visual Lock Picking Workstation is a Raspberry Pi enclosure which makes it possible to capture live video from a cutaway lock. It is intended as an instructional device which can be used to display the inner workings of a lock while teaching lock picking.
3•4•0•0•Updated Jul 17, 2023Jul 17, 2023
nvdsearch
Public
A National Vulnerability Database (NVD) API query tool
Go
•
MIT License
•2•17•0•0•Updated Jun 27, 2023Jun 27, 2023
pyautoaws
Public
Simple Python wrapper for Terraform/Ansible to build AWS resources
HCL
•
MIT License
•0•2•0•0•Updated Jun 22, 2023Jun 22, 2023
rest-api-goat
Public
Python
•
MIT License
•27•69•0•1•Updated May 1, 2023May 1, 2023
pre2k
Public
Python
•
MIT License
•32•1•0•0•Updated Jan 30, 2023Jan 30, 2023
Netskope-Terraform-Examples
Public
Sample Terraform Files to deploy, and manage Netskope private access publishers and applications
HCL
•
MIT License
•0•0•0•0•Updated Oct 7, 2022Oct 7, 2022
airCross
Public
airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authentication attacks. airCross can locate AirWatch authentication endpoint, validate the authentication strategy of the environment, collect GroupID authentication values, conduct single-factor authentication, and perform…
Go
•
MIT License
•10•39•0•0•Updated Jul 19, 2022Jul 19, 2022
Registry-Recon
Public
Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
MIT License
•36•321•0•0•Updated Jun 6, 2022Jun 6, 2022
InsecureShop
Public archive
An Intentionally designed Vulnerable Android Application built in Kotlin.
Kotlin
•
MIT License
•162•231•2•0•Updated Mar 2, 2022Mar 2, 2022
Microsoft365_devicePhish
Public
A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow
Python
•
MIT License
•25•92•0•0•Updated Aug 17, 2021Aug 17, 2021
showSSID
Public
Python
•6•7•1•0•Updated Jun 9, 2021Jun 9, 2021
mobile-nuclei-templates
Public
MIT License
•80•389•1•0•Updated Jun 1, 2021Jun 1, 2021
warmap-go
Public
CSS
•
MIT License
•4•4•1•0•Updated Apr 5, 2021Apr 5, 2021
evilginx2
Public
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Go
•
GNU General Public License v3.0
•1.9k•11•0•0•Updated Mar 22, 2021Mar 22, 2021
rustyIron
Public
rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication attacks. rustyIron can locate the MobileIron MDM authentication endpoint, validate the authentication strategy of the environment, perform user enumeration, brute-force registration PIN values, and perform sin…
Go
•
MIT License
•9•43•0•0•Updated Mar 22, 2021Mar 22, 2021
BadOutlook
Public
(kinda) Malicious Outlook Reader
C#
•38•17•0•0•Updated Mar 2, 2021Mar 2, 2021
Yara-Rules
Public
YARA
•
MIT License
•3•9•0•0•Updated Feb 3, 2021Feb 3, 2021
CVE-2020-15931
Public
Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerability
Go
•
MIT License
•6•25•1•0•Updated Nov 11, 2020Nov 11, 2020