3 Repos
Orchestrates listener configuration and payload creation to simplify security testing tasks.
Distinct from Exploit Frameworks: Distinct from Exploit Frameworks: focuses on the orchestration of the testing workflow rather than the exploit logic itself.
Explore 3 awesome GitHub repositories matching security & cryptography · Exploitation Workflow Managers. Refine with filters or upvote what's useful.
TheFatRat is a security exploitation framework designed to automate the creation, obfuscation, and deployment of payloads for penetration testing. It functions as a comprehensive toolkit that streamlines the exploitation lifecycle, enabling users to generate malicious executables, manage network listeners, and execute post-exploitation tasks through a unified command-line interface. The framework distinguishes itself by integrating various third-party exploitation utilities into a single, orchestrated workflow. It provides specialized capabilities for embedding code into legitimate binaries a
Orchestrates the configuration of listeners and the creation of payloads to simplify security testing tasks.
Sn1per is a vulnerability management platform and penetration testing orchestrator designed to automate reconnaissance, vulnerability scanning, and exploit verification. It functions as a dockerized security toolkit that coordinates multiple tools into a unified automated pipeline to identify security flaws across network and web assets. The platform features an attack surface manager for discovering internet-facing assets through OSINT, DNS enumeration, and certificate transparency. It distinguishes itself with an AI-powered security analyzer that uses large language models to summarize scan
Orchestrates the end-to-end security pipeline from reconnaissance to exploit verification to streamline penetration testing.
AutoSploit ist ein automatisiertes Exploitation-Framework zur Entdeckung von Remote-Hosts und zur Ausführung von Exploit-Modulen in großem Maßstab, um Reverse-Shells zu etablieren. Es fungiert als Tool zur Netzwerkaufklärung und als Orchestrator für Remote-Code-Execution, der die Bereitstellung von Angriffsmodulen gegen mehrere Ziele verwaltet. Das System bietet einen Proxy-basierten Traffic-Masker, der Netzwerkanfragen über externe Server leitet und HTTP-Header sowie User-Agents rotiert, um den Ursprung der Aktivität zu verschleiern. Es ermöglicht die Orchestrierung benutzerdefinierter Exploits durch die Integration externer Angriffsmodule und das Management von Workspace-Verbindungsparametern. Das Framework deckt die Zielentdeckung via Suchmaschinen-Queries und API-Integrationen ab sowie das Management von Ziellisten mittels externer Dateien und Whitelists. Zudem enthält es Funktionen für die sitzungsbasierte Listener-Konfiguration, um eingehende Remote-Verbindungen zu erfassen.
Orchestrates listener configurations and custom modules to automate the exploitation of remote services.