Skip to content

Popular repositories Loading

  1. HopLa HopLa Public

    HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

    Java 711 78

  2. php_filter_chain_generator php_filter_chain_generator Public

    Python 680 70

  3. frinet frinet Public

    Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.

    C 460 44

  4. eos eos Public

    Enemies Of Symfony - Debug mode Symfony looter

    Python 310 44

  5. GPOddity GPOddity Public

    The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).

    Python 262 21

  6. nord-stream nord-stream Public

    Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.

    Python 251 13

Repositories

Showing 10 of 80 repositories
  • GPOddity Public

    The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).

    synacktiv/GPOddity’s past year of commit activity
    Python 262 21 1 0 Updated Nov 8, 2024
  • octoscan Public

    Octoscan is a static vulnerability scanner for GitHub action workflows.

    synacktiv/octoscan’s past year of commit activity
    Go 166 GPL-3.0 10 2 1 Updated Nov 4, 2024
  • shh Public

    Systemd Hardening Helper

    synacktiv/shh’s past year of commit activity
    Rust 101 GPL-3.0 1 1 0 Updated Nov 4, 2024
  • bbs Public

    bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based on the request's target. Routing can be configured with a PAC script (if built with PAC support), or through a JSON file.

    synacktiv/bbs’s past year of commit activity
    Go 80 4 0 0 Updated Oct 30, 2024
  • SCCMSecrets Public

    SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.

    synacktiv/SCCMSecrets’s past year of commit activity
    Python 153 16 0 0 Updated Oct 28, 2024
  • action-octoscan Public

    📦 :octocat: A GitHub Action that performs a security scan of your GitHub Actions.

    synacktiv/action-octoscan’s past year of commit activity
    Shell 4 GPL-3.0 0 0 0 Updated Oct 28, 2024
  • nord-stream Public

    Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.

    synacktiv/nord-stream’s past year of commit activity
    Python 251 GPL-3.0 13 1 0 Updated Oct 20, 2024
  • eos Public

    Enemies Of Symfony - Debug mode Symfony looter

    synacktiv/eos’s past year of commit activity
    Python 310 44 0 1 Updated Oct 18, 2024
  • gh-hijack-runner Public

    A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.

    synacktiv/gh-hijack-runner’s past year of commit activity
    Python 18 4 0 0 Updated Oct 13, 2024
  • adb_client Public

    Rust ADB client

    synacktiv/adb_client’s past year of commit activity
    Rust 8 1 1 0 Updated Oct 10, 2024