Explore @optiv Open Source projects

Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

CSS

Shell

Scala

Nix

Zig

Erlang

C#

HTML

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Scala

R

Lua

Groovy

Jupyter Notebook

Crystal

Racket

Ada

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇱🇻 Latvia

🇵🇾 Paraguay

🇨🇫 Central African Republic

🇰🇪 Kenya

🇮🇳 India

🇨🇻 Cape Verde

🇯🇲 Jamaica

🇰🇭 Cambodia

All Countries Compare Countries

Optiv Security (@optiv)

optiv

Stars
9,543
Global Org. Rank 2,443 (Top 0.8 %)
Registered about 9 years ago
Most used languages

Go
29.7 %

Python
27.0 %

Java
16.2 %

HCL 5.4 %

C
2.7 %

JavaScript
2.7 %

CSS
2.7 %

C#
2.7 %

Kotlin
2.7 %

C++
2.7 %

Rust
2.7 %

YARA 2.7 %
Location 🇺🇸 United States
Country Total Rank 1,127
Country Ranking

YARA 27

Go
140

Kotlin
249

Rust
298

HCL 1,439

Python
4,552

Java
6,489

CSS
6,911

C
8,129

JavaScript
9,240

C++
9,304

ScareCrow

ScareCrow - Payload creation framework designed around EDR bypass.

Freeze

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Mangle

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

Ivy

Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.

Freeze.rs

Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST

Go365

An Office365 User Attack Tool

Talon

A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.

mobile-nuclei-templates

Registry-Recon

Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon

Dent

A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

InsecureShop

An Intentionally designed Vulnerable Android Application built in Kotlin.

OSINT_Encyclopedia

Your go-to resource for all things OSINT

Microsoft365_devicePhish

A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow

blemon

Universal BLE Monitoring with Frida (or Objection)

rest-api-goat

KnockKnock

Enumerate valid users within Microsoft Teams and OneDrive with clean output.

rustyIron

rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication attacks. rustyIron can locate the MobileIron MDM authentication endpoint, validate the authentication strategy of the environment, perform user enumeration, brute-force registration PIN values, and perform single-factor authentication attacks.

airCross

airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authentication attacks. airCross can locate AirWatch authentication endpoint, validate the authentication strategy of the environment, collect GroupID authentication values, conduct single-factor authentication, and perform user enumeration, in some instances.

CVE-2020-15931

Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerability

nvdsearch

A National Vulnerability Database (NVD) API query tool

doppelganger

Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of capturing access control card data while performing physical security assessments. Doppelgänger keeps the operator's ease of access, maintenance, and operational communications in mind.

DATP_Queries

Microsoft Defender ATP Advanced Hunting Queries

Yara-Rules

netneedle

Network based steganography based control channels and chat.

showSSID

Luhn-Calculator

A very simple Burp extension to make it easier to enumerate credit cards in the Intruder.

burp-reset-a-tron

reset-a-tron Burp extension

burp-IBM-WebSphere-Portlet-Decoder

BurpSuite plugin for decoding IBM WebSphere Portlet States

burp-java-deserializer

android-ndk-crackme

A simple NDK-based application on which to demonstrate some important attack strategies.

warmap-go

VisualLockPickingWorkstation

The Visual Lock Picking Workstation is a Raspberry Pi enclosure which makes it possible to capture live video from a cutaway lock. It is intended as an instructional device which can be used to display the inner workings of a lock while teaching lock picking.

burpshellshock

Shellshock scanner for Apache MOD_CGI

talus

azure_runbooks

talus_client

checkpassword-.net

HIBP Pwned Passwords API Client for .NET apps

checkpassword-java

HIBP Pwned Passwords API client for Java projects

Lightning-Action-Editor

pyautoaws

Simple Python wrapper for Terraform/Ansible to build AWS resources

azure-api-management-tracing-helper

captcha-solve

terraform-eks

Terraform/Amazon EKS Deployment Starter Scripts