Skip to content

@synacktiv Synacktiv

Change the repository type filter

All

    Repositories list

    112 repositories

    • gpoParser

      Public
      gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory environment.
      active-directoryred-teamgpo
      active-directoryred-teamgpopentest-tool
      Python
      2933500Updated Mar 11, 2026Mar 11, 2026

    • sharker

      Public
      A simple, reliable and reasonably fast network capture analyzer.
      Python
      GNU General Public License v3.0
      02630Updated Mar 10, 2026Mar 10, 2026

    • nord-stream

      Public
      Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, …
      githubgitlabgitlab-ci
      githubgitlabgitlab-cici-cdcicdazuredevops
      Python
      GNU General Public License v3.0
      1932300Updated Mar 10, 2026Mar 10, 2026

    • shh

      Public
      Systemd Hardening Helper - Mirror of https://github.com/desbma/shh
      Rust
      GNU General Public License v3.0
      215810Updated Mar 9, 2026Mar 9, 2026

    • ntdissector

      Public
      Python
      Other
      2116947Updated Feb 27, 2026Feb 27, 2026

    • bbs

      Public
      bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based o…
      Go
      49500Updated Feb 19, 2026Feb 19, 2026

    • kcmapper

      Public
      KcMapper is a security auditing tool for Keycloak. It exports your Keycloak configuration (realms, clients, users, roles, etc.) into a Neo4j graph database. Thi…
      Python
      MIT License
      21400Updated Feb 17, 2026Feb 17, 2026

    • Livepyre

      Public
      A tool designed to exploit CVE-2025-54068 and Remote Command Execution if the APP_KEY of the Livewire project is known.
      Python
      MIT License
      2812310Updated Feb 17, 2026Feb 17, 2026

    • Prox-Ez

      Public
      Python
      1210500Updated Feb 11, 2026Feb 11, 2026

    • kcmdump

      Public
      Dump Kerberos tickets from the KCM database of SSSD
      Python
      45600Updated Dec 31, 2025Dec 31, 2025

    • laravel-crypto-killer

      Public
      A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.
      Python
      MIT License
      1313612Updated Dec 23, 2025Dec 23, 2025

    • DepFuzzer

      Public
      Python
      MIT License
      139202Updated Dec 15, 2025Dec 15, 2025

    • GPOddity

      Public
      The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
      Python
      3036110Updated Dec 13, 2025Dec 13, 2025

    • octoscan

      Public
      Octoscan is a static vulnerability scanner for GitHub action workflows.
      githubexploitvulnerability
      githubexploitvulnerabilitycicdgithub-actions
      Go
      GNU General Public License v3.0
      1924783Updated Dec 8, 2025Dec 8, 2025

    • GroupPolicyBackdoor

      Public
      Group Policy Objects manipulation and exploitation framework
      Python
      3229620Updated Dec 7, 2025Dec 7, 2025

    • SCCMSecrets

      Public
      SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
      Python
      3026300Updated Nov 22, 2025Nov 22, 2025

    • twoface

      Public
      "Two-Face" Rust binary on Linux
      Rust
      45100Updated Nov 10, 2025Nov 10, 2025

    • frinet

      Public
      Frida-based tracer for easier reverse-engineering on Android, iOS, Linux, Windows and most related architectures.
      C
      MIT License
      5558151Updated Nov 5, 2025Nov 5, 2025

    • OUned

      Public
      The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
      Python
      1515400Updated Nov 2, 2025Nov 2, 2025

    • gpblib

      Public
      Common library for tools implementing GPO attack vectors
      Python
      0200Updated Nov 2, 2025Nov 2, 2025

    • io_uring_scanner

      Public
      io_uring based network scanner written in Rust
      Rust
      GNU General Public License v3.0
      54600Updated Oct 27, 2025Oct 27, 2025

    • itsm-exploit

      Public
      Ivanti Neurons for ITSM (On Premise) exploits
      Python
      0800Updated Oct 25, 2025Oct 25, 2025

    • synacktiv-rules

      Public
      Public repository of Sigma and YARA rules created by Synacktiv
      YARA
      Other
      11800Updated Oct 15, 2025Oct 15, 2025

    • appledb_rs

      Public
      Apple artifacts database - Mirror of https://github.com/cocool97/appledb_rs
      macosiosapple
      macosiosappleentitlements
      Rust
      12710Updated Oct 14, 2025Oct 14, 2025

    • extloader

      Public
      A chromium extension exploitation toolkit
      Python
      GNU General Public License v3.0
      21800Updated Oct 2, 2025Oct 2, 2025

    • CVE-2025-59712_CVE-2025-59713

      Public
      Snipe-IT PoC exploit for CVE-2025-59712 and CVE-2025-59713
      Python
      2200Updated Oct 2, 2025Oct 2, 2025

    • statx

      Public
      This program uses the statx system call to return file status (extended) in the body file format.
      C
      Apache License 2.0
      2000Updated Sep 5, 2025Sep 5, 2025

    • HopLa

      Public
      HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
      burpburp-pluginburpsuite
      burpburp-pluginburpsuiteburp-extensionsburp-uiburp-suite
      Java
      BSD 3-Clause "New" or "Revised" License
      8481141Updated Aug 13, 2025Aug 13, 2025

    • CVE-2025-47178

      Public
      Python
      1600Updated Aug 5, 2025Aug 5, 2025

    • sccmsqlclient

      Public
      Python
      52600Updated Aug 5, 2025Aug 5, 2025