Skip to content

@synacktiv Synacktiv

Change the repository type filter

All

    Repositories list

    102 repositories

    • GroupPolicyBackdoor

      Public
      Group Policy Objects manipulation and exploitation framework
      Python
      77300Updated Aug 20, 2025Aug 20, 2025

    • gpoParser

      Public
      gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory environment.
      active-directoryred-teamgpopentest-tool
      Python
      2323100Updated Aug 18, 2025Aug 18, 2025

    • HopLa

      Public
      HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
      burpburp-pluginburpsuiteburp-extensionsburp-uiburp-suite
      Java
      BSD 3-Clause "New" or "Revised" License
      8176840Updated Aug 13, 2025Aug 13, 2025

    • CVE-2025-47178

      Public
      Python
      0400Updated Aug 5, 2025Aug 5, 2025

    • sccmsqlclient

      Public
      Python
      32410Updated Aug 5, 2025Aug 5, 2025

    • DepFuzzer

      Public
      Python
      MIT License
      88201Updated Jul 31, 2025Jul 31, 2025

    • nord-stream

      Public
      Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
      githubgitlabgitlab-cici-cdcicdazuredevops
      Python
      GNU General Public License v3.0
      1529700Updated Jul 30, 2025Jul 30, 2025

    • AADOutsider-py

      Public
      Python3 rewrite of AsOutsider features of AADInternals
      Python
      MIT License
      55300Updated Jul 23, 2025Jul 23, 2025

    • mofos

      Public
      Virtual machines manipulation framework
      Python
      MIT License
      69000Updated Jul 23, 2025Jul 23, 2025

    • shh

      Public
      Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
      Rust
      GNU General Public License v3.0
      213510Updated Jul 22, 2025Jul 22, 2025

    • captaincredz

      Public
      CaptainCredz is a modular and discreet password-spraying tool.
      Python
      1012300Updated Jul 22, 2025Jul 22, 2025

    • adb_client

      Public
      Rust ADB client - Mirror of https://github.com/cocool97/adb_client
      Rust
      MIT License
      52211Updated Jul 7, 2025Jul 7, 2025

    • kcmapper

      Public
      KcMapper is a security auditing tool for Keycloak. It exports your Keycloak configuration (realms, clients, users, roles, etc.) into a Neo4j graph database. This representation enables complex relationship analysis and security auditing through a built-in interactive web UI with pre-defined queries.
      Python
      MIT License
      01000Updated Jul 2, 2025Jul 2, 2025

    • bbs

      Public
      bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based on the request's target. Routing can be configured with a PAC script (if built with PAC support), or through a JSON file.
      Go
      59000Updated Jun 27, 2025Jun 27, 2025

    • laravel-crypto-killer

      Public
      A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
      Python
      MIT License
      99400Updated Jun 25, 2025Jun 25, 2025

    • ntdissector

      Public
      Python
      Other
      1715546Updated Jun 20, 2025Jun 20, 2025

    • frinet

      Public
      Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.
      C
      MIT License
      4956251Updated Jun 19, 2025Jun 19, 2025

    • thats_no_pipe

      Public
      Windows named pipe hooking toolkit
      TypeScript
      0200Updated Jun 18, 2025Jun 18, 2025

    • objc-helper

      Public
      IDA helper plugin to reverse engineer Objective-C code
      Python
      64100Updated Jun 12, 2025Jun 12, 2025

    • CcmMessagingBackdoor

      Public
      C#
      21700Updated Jun 10, 2025Jun 10, 2025

    • ROADtools

      Public
      A collection of Azure AD/Entra tools for offensive and defensive security purposes
      Python
      MIT License
      321100Updated Jun 9, 2025Jun 9, 2025

    • synodecrypt

      Public
      A tool to decrypt all Synology encrypted archives (SPK, PAT, ...)
      Python
      01000Updated Jun 6, 2025Jun 6, 2025

    • windows_kernel_shadow_stack

      Public
      Proof of concepts demonstrating some aspects of the Windows kernel shadow stack mitigation.
      C
      85100Updated Jun 2, 2025Jun 2, 2025

    • SCCMSecrets

      Public
      SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
      Python
      2624000Updated May 20, 2025May 20, 2025

    • CVE-2025-47227_CVE-2025-47228

      Public
      ScriptCase Pre-Authenticated Remote Command Execution exploitation script (CVE-2025-47227, CVE-2025-47228).
      exploitscriptcasecve-2025-47227cve-2025-47228
      Python
      1700Updated May 14, 2025May 14, 2025

    • synacktiv-rules

      Public
      Public repository of Sigma and YARA rules created by Synacktiv
      YARA
      Other
      11200Updated May 12, 2025May 12, 2025

    • octoscan

      Public
      Octoscan is a static vulnerability scanner for GitHub action workflows.
      githubexploitvulnerabilitycicdgithub-actions
      Go
      GNU General Public License v3.0
      1722073Updated Apr 11, 2025Apr 11, 2025

    • OUned

      Public
      The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
      Python
      1413800Updated Mar 29, 2025Mar 29, 2025

    • IPSpinner

      Public
      IPSpinner works as a local proxy that redirects requests through external services.
      Go
      57200Updated Mar 19, 2025Mar 19, 2025

    • nwn-exploit

      Public
      Neverwinter Nights : Enhanced edition exploit
      JavaScript
      1310Updated Mar 6, 2025Mar 6, 2025