Skip to content

@synacktiv Synacktiv

Change the repository type filter

All

    Repositories list

    115 repositories

    • QLinspector

      Public
      Finding Java gadget chains with CodeQL
      C#
      GNU General Public License v3.0
      2218711Updated Apr 11, 2026Apr 11, 2026

    • sccmsqlclient

      Public
      Python
      62600Updated Apr 10, 2026Apr 10, 2026

    • CVE-2024-43468

      Public
      Python
      129500Updated Apr 7, 2026Apr 7, 2026

    • HopLa

      Public
      HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
      burpburp-pluginburpsuite
      burpburp-pluginburpsuiteburp-extensionsburp-uiburp-suite
      Java
      BSD 3-Clause "New" or "Revised" License
      8481640Updated Apr 1, 2026Apr 1, 2026

    • ntdissector

      Public
      Python
      Other
      2117546Updated Mar 31, 2026Mar 31, 2026

    • bissap

      Public
      A new open-source tool to quickly audit SAP permissions.
      C++
      GNU Affero General Public License v3.0
      0200Updated Mar 30, 2026Mar 30, 2026

    • octoscan

      Public
      Octoscan is a static vulnerability scanner for GitHub action workflows.
      githubexploitvulnerability
      githubexploitvulnerabilitycicdgithub-actions
      Go
      GNU General Public License v3.0
      2025453Updated Mar 30, 2026Mar 30, 2026

    • sap_logon_ticket

      Public
      General toolkit related to SAP's SSO mechanism : the Logon Tickets
      Python
      GNU General Public License v3.0
      0000Updated Mar 26, 2026Mar 26, 2026

    • impacket

      Public
      Impacket is a collection of Python classes for working with network protocols.
      Python
      Other
      3.9k600Updated Mar 24, 2026Mar 24, 2026

    • thats_no_pipe

      Public
      Windows named pipe hooking toolkit
      TypeScript
      1300Updated Mar 20, 2026Mar 20, 2026

    • gpoParser

      Public
      gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory environment.
      active-directoryred-teamgpo
      active-directoryred-teamgpopentest-tool
      Python
      3635311Updated Mar 19, 2026Mar 19, 2026

    • mofos

      Public
      Virtual machines manipulation framework
      Python
      MIT License
      510400Updated Mar 17, 2026Mar 17, 2026

    • sharker

      Public
      A simple, reliable and reasonably fast network capture analyzer.
      Python
      GNU General Public License v3.0
      02530Updated Mar 10, 2026Mar 10, 2026

    • nord-stream

      Public
      Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, …
      githubgitlabgitlab-ci
      githubgitlabgitlab-cici-cdcicdazuredevops
      Python
      GNU General Public License v3.0
      2135401Updated Mar 10, 2026Mar 10, 2026

    • shh

      Public
      Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
      Rust
      GNU General Public License v3.0
      216310Updated Mar 9, 2026Mar 9, 2026

    • bbs

      Public
      bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based o…
      Go
      49500Updated Feb 19, 2026Feb 19, 2026

    • kcmapper

      Public
      KcMapper is a security auditing tool for Keycloak. It exports your Keycloak configuration (realms, clients, users, roles, etc.) into a Neo4j graph database. Thi…
      Python
      MIT License
      21400Updated Feb 17, 2026Feb 17, 2026

    • Livepyre

      Public
      A tool designed to exploit CVE-2025-54068 and Remote Command Execution if the APP_KEY of the Livewire project is known.
      Python
      MIT License
      2913011Updated Feb 17, 2026Feb 17, 2026

    • Prox-Ez

      Public
      Python
      1110500Updated Feb 11, 2026Feb 11, 2026

    • kcmdump

      Public
      Dump Kerberos tickets from the KCM database of SSSD
      Python
      45600Updated Dec 31, 2025Dec 31, 2025

    • laravel-crypto-killer

      Public
      A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
      Python
      MIT License
      1313812Updated Dec 23, 2025Dec 23, 2025

    • DepFuzzer

      Public
      Python
      MIT License
      139302Updated Dec 15, 2025Dec 15, 2025

    • GPOddity

      Public
      The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
      Python
      3036410Updated Dec 13, 2025Dec 13, 2025

    • GroupPolicyBackdoor

      Public
      Group Policy Objects manipulation and exploitation framework
      Python
      3229920Updated Dec 7, 2025Dec 7, 2025

    • SCCMSecrets

      Public
      SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
      Python
      3226601Updated Nov 22, 2025Nov 22, 2025

    • twoface

      Public
      "Two-Face" Rust binary on Linux
      Rust
      45100Updated Nov 10, 2025Nov 10, 2025

    • frinet

      Public
      Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.
      C
      MIT License
      5558251Updated Nov 5, 2025Nov 5, 2025

    • OUned

      Public
      The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
      Python
      1415700Updated Nov 2, 2025Nov 2, 2025

    • gpblib

      Public
      Common library for tools implementing GPO attack vectors
      Python
      0200Updated Nov 2, 2025Nov 2, 2025

    • io_uring_scanner

      Public
      io_uring based network scanner written in Rust
      Rust
      GNU General Public License v3.0
      54600Updated Oct 27, 2025Oct 27, 2025
    ProTip! When viewing an organization's repositories, you can use the props. filter to filter by custom property.