Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

An image-to-world skillset for Claude.

Dex to Java decompiler

The agent that grows with you

SIAC identifies and correlates websites sharing the same hosting IP address to reveal shared infrastructure and potential exposure risks.

omo/lazycodex: The coding agent for tokenmaxxers;the one and only agent harness for complex codebases. For your Codex, for your OpenCode

Python package for configuring Fortigate (Fortios) devices using REST API

A self-hosted sandbox for red teams to test payloads against modern detection before deployment. MCP integration lets an LLM agent drive analysis end to end.

Microsoft Entra ID (Azure AD) Unauthenticated Enumeration

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

Python version of the C# tool for "Shadow Credentials" attacks

Extracts browser-stored data such as refresh tokens, cookies, saved credentials, credit cards, autofill entries, browsing history, and bookmarks from modern Chromium-based and Gecko-based browsers …

A library that scrapes Linkedin for user data

Local Area Network discovery tool with a modern Terminal User Interface (TUI). Discover, explore, and understand your LAN in an intuitive way.

Local Area Network discovery tool with an interactive Terminal User Interface (TUI) written in Go. Discover, explore, and understand your LAN in an intuitive way. Knock Knock.. who's there? 🚪

Sniffs outbound traffic for suspicious, beacon-like callbacks, because if it keeps coming back on schedule, it's probably not breakfast.

CyberArk Security Audit

Edit files without leaving timestamp traces.

Autonomous multi-session AI coding

Fast Windows post-exploitation wins after initial access.

The Azure Execution Tool

EvilMist is a collection of scripts and utilities designed to support cloud penetration testing & red teaming. The toolkit helps identify misconfigurations, assess privilege-escalation paths, and s…

Tools, scripts and tips useful during IT Security Audits.

From Chaos to Clarity. Turning Raw Windows Logs into Executive Insights. Looking for Indicators of Compromise.

Full stack, modern web application template. Using FastAPI, React, SQLModel, PostgreSQL, Docker, GitHub Actions, automatic HTTPS and more.

A PowerShell script that moves the mouse by one pixel back and forth at a user-defined interval, preventing the computer from going to sleep or appearing as idle in programs like Microsoft Teams an…

A Onion websites searcher

A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch calc.exe, did it even happen?

AADInternals PowerShell module for administering Azure AD and Office 365