Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Emacs Lisp

Swift

OCaml

Solidity

Go

Erlang

Zig

Clojure

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Java

Kotlin

JavaScript

Zig

Nix

Elm

C#

F#

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇺🇸 United States

🇪🇨 Ecuador

🇱🇻 Latvia

🇩🇲 Dominica

🇲🇿 Mozambique

🇻🇦 Vatican City

🇭🇹 Haiti

🇹🇷 Turkey

All Countries Compare Countries

threatexpress/pasties

Stars
106
Rank 323,995 (Top 7 %)
Language
Shell
Created over 5 years ago
Updated over 3 years ago

threatexpress/pasties

threatexpress

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A collection of random bits of information common to many individual penetration tests, red teams, and other assessments

Pasties

'Pasties' started as a small file used to collect random bits of information and scripts that were common to many individual tests.

Most of this is just a consolidation of publicly available information and things that Joe Vest (@joevest), Andrew Chiles (@andrewchiles), Derek Rushing, or myself (@minis_io) have found useful.

Over time additional sections, section placeholders, snippets, and links were added for "quick reference" and has grown to quite a sizable markdown file.

The more complex or longer sections will be separated into smaller more detailed write-ups; however, we decided to drop the short and generic info for public use now. Pasties data will also eventually be formatted and added to the wiki.

Additional Links

Also check out HostEnum

malleable-c2

Cobalt Strike Malleable C2 Design and Reference Guide

domainhunter

Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names

red-team-scripts

A collection of Red Team focused tools, scripts, and notes

random_c2_profile

Cobalt Strike random C2 Profile generator

cs2modrewrite

Convert Cobalt Strike profiles to modrewrite scripts

metatwin

The project is designed as a file resource cloner. Metadata, including digital signature, is extracted from one file and injected into another.

tinyshell

aggressor-scripts

Cobalt Strike Aggressor Scripts

subshell

SubShell is a python command shell used to control and execute commands through HTTP requests to a webshell. SubShell acts as the interface to the remote webshells.

threatbox

ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started as a collection of scripts, lived as a rolling virtual machine, existed as code to build a Linux ISO, and has now been converted to a set of ansible playbooks. Why Ansible? Why not? This seemed a natural evolution.

invoke-pipeshell

SMB Named Pipe shell

portplow

PortPlow is a distributed port and system scanning & enumeration service. It enables the quick and automated enumeration of ports and services from multiple systems managed by a central console.

edc

Event Data Collector

mythic2modrewrite

Generate Apache mod_rewrite rules for Mythic C2 profiles

threat-mitigation

Threat Mitigation Strategies

procdot_sandbox

ProcDot Malware Sandbox

cobaltstrike_payload_generator

Quickly generate every payload type for each listener and optionally host via HTTP.

threatexpress

redteamguide

Home of https://redteam.guide

tools