Skip to content
View t3l3machus's full-sized avatar
:electron:
Focusing
:electron:
Focusing

Sponsors

@gbyx3

Sponsoring

@gwen001

Block or report t3l3machus

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
t3l3machus/README.md

Connect with me / Support:

Hi, I'm t3l3machus, Penetration Tester & Cybersec Researcher from Athens, Greece 🇬🇷, currently living in Poland 🇵🇱.
If you like the tools I make please show some love by following me, buymeacoffee, throwing a star here and there or just give respect on HackTheBox.

Projects & Contributions:

💥 Offensive Security Tools
Project Short Description Stars Forks
Villain A C2 backdoor generator and multi-session handler. Stars Forks
toxssin An XSS exploitation command-line interface. Stars Forks
hoaxshell A Windows reverse shell payload generator and handler that abuses the http(s)
protocol to establish a beacon-like reverse shell.
Stars Forks
psudohash A password list generator based on keywords mutated by commonly used patterns and more. Stars Forks
PowerShell-Obfuscation-Bible A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts. Stars Forks
eviltree A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches. Stars Forks
wwwtree A utility for quickly and easily locating, web hosting and transferring resources during PrivEsc. Stars Forks
CVE-2023-22960 PoC for CVE-2023-22960 (Brute-force Lexmark printers). Stars Forks
Synergy Httpx A Python http(s) server designed to assist in red teaming activities such as receiving intercepted data via POST requests and serving content dynamically (e.g. payloads). Stars Forks
BabelStrike Performs Romanization and name-to-usernames convertion of full name lists. Stars Forks
pentest-pivoting A network pivoting guide for pentests / CTFs. Stars Forks
:octocat: Contributions
Project Short Description Contribution
nuclei-templates Templates are the core of the nuclei scanner which powers the actual scanning engine. Templates contributed: CVE-2024-2340, sap-public-admin
reverse-shell-generator (revshells.com) Hosted Reverse Shell generator with a ton of functionality. Added HoaxShell and front-end style improvements.
🌀 CVEs
CVE Short Description References
CVE-2023-22960 Lexmark devices have a feature that protects against local account credential brute-force guessing attacks by temporarily locking out an account for an amount of time after a number of unsuccessful login attempts. This vulnerability bypasses the brute-force protection, allowing unrestricted attempts to guess a local account's credentials. Works for PIN-based authentication as well. CVE-2023-22960 Publication
⚡ Other Tools, Guides, etc
Project Short Description Stars Forks
ssh-log-alert Receive email alerts on successful ssh logins (mailgun). Stars Forks
gmail-ssh-log-alert Receive email alerts on successful ssh logins (gmail). Stars Forks
cybersec-service-metrics A spreadsheet designed to automatically generate Key Performance Indicators
for Cyber Security Services based on documented data. Ideal for Team leaders / Managers of small-medium sized organizations.
Stars Forks
Awesome-AI A list of awesome AI resources around the internet. Stars Forks
OWASP-Testing-Guide-Checklist OWASP based Web Application Security Testing Checklist. Stars Forks

Pinned Loading

  1. Villain Villain Public

    Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…

    Python 3.9k 616

  2. hoaxshell hoaxshell Public

    A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

    Python 3.1k 484

  3. toxssin toxssin Public

    An XSS exploitation command-line interface and payload generator.

    Python 1.3k 181

  4. psudohash psudohash Public

    Generates millions of keyword-based password mutations in seconds.

    Python 1.2k 156

  5. PowerShell-Obfuscation-Bible PowerShell-Obfuscation-Bible Public

    A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

    911 102

  6. eviltree eviltree Public

    A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches.

    Python 385 45