Explore @optiv Open Source projects

Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Erlang

Swift

Haskell

Lua

F#

CSS

C#

Julia

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

PHP

Elixir

JavaScript

Erlang

Perl

Java

C#

Crystal

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇸🇲 San Marino

🇨🇽 Christmas Island

🇵🇸 Palestine

🇨🇲 Cameroon

🇮🇸 Iceland

🇷🇺 Russia

🇳🇫 Norfolk Island

🇮🇷 Iran

All Countries Compare Countries

Optiv Security (@optiv)

optiv

Stars
9,753
Global Org. Rank 2,428 (Top 0.8 %)
Registered over 9 years ago
Most used languages

Go
29.7 %

Python
27.0 %

Java
16.2 %

HCL 5.4 %

JavaScript
2.7 %

Kotlin
2.7 %

C
2.7 %

Rust
2.7 %

CSS
2.7 %

C#
2.7 %

YARA 2.7 %

C++
2.7 %
Location 🇺🇸 United States
Country Total Rank 1,127
Country Ranking

YARA 27

Go
144

Kotlin
249

Rust
302

HCL 1,334

Python
4,647

Java
8,056

CSS
8,264

JavaScript
8,634

C++
9,317

C
9,838

ScareCrow

ScareCrow - Payload creation framework designed around EDR bypass.

Freeze

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Mangle

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

Ivy

Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.

Freeze.rs

Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST

Go365

An Office365 User Attack Tool

Talon

A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.

mobile-nuclei-templates

Registry-Recon

Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon

Dent

A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.

InsecureShop

An Intentionally designed Vulnerable Android Application built in Kotlin.

OSINT_Encyclopedia

Your go-to resource for all things OSINT

blemon

Universal BLE Monitoring with Frida (or Objection)

Microsoft365_devicePhish

A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow

rest-api-goat

KnockKnock

Enumerate valid users within Microsoft Teams and OneDrive with clean output.

rustyIron

rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication attacks. rustyIron can locate the MobileIron MDM authentication endpoint, validate the authentication strategy of the environment, perform user enumeration, brute-force registration PIN values, and perform single-factor authentication attacks.

airCross

airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authentication attacks. airCross can locate AirWatch authentication endpoint, validate the authentication strategy of the environment, collect GroupID authentication values, conduct single-factor authentication, and perform user enumeration, in some instances.

CVE-2020-15931

Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerability

nvdsearch

A National Vulnerability Database (NVD) API query tool

doppelganger

Doppelgänger is firmware that runs on ESP32 devices that can be embedded within commercially available RFID readers with the intent of capturing access control card data while performing physical security assessments. Doppelgänger keeps the operator's ease of access, maintenance, and operational communications in mind.

DATP_Queries

Microsoft Defender ATP Advanced Hunting Queries

Yara-Rules

netneedle

Network based steganography based control channels and chat.

showSSID

Luhn-Calculator

A very simple Burp extension to make it easier to enumerate credit cards in the Intruder.

burp-reset-a-tron

reset-a-tron Burp extension

android-ndk-crackme

A simple NDK-based application on which to demonstrate some important attack strategies.

burp-IBM-WebSphere-Portlet-Decoder

BurpSuite plugin for decoding IBM WebSphere Portlet States

burp-java-deserializer

warmap-go

VisualLockPickingWorkstation

The Visual Lock Picking Workstation is a Raspberry Pi enclosure which makes it possible to capture live video from a cutaway lock. It is intended as an instructional device which can be used to display the inner workings of a lock while teaching lock picking.

burpshellshock

Shellshock scanner for Apache MOD_CGI

azure_runbooks

talus_client

pyautoaws

Simple Python wrapper for Terraform/Ansible to build AWS resources

checkpassword-.net

HIBP Pwned Passwords API Client for .NET apps

talus

Lightning-Action-Editor

azure-api-management-tracing-helper

captcha-solve

checkpassword-java

HIBP Pwned Passwords API client for Java projects

terraform-eks

Terraform/Amazon EKS Deployment Starter Scripts