SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

A Workflow Engine for Offensive Security

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

☁️ ⚡ Granular, Actionable Adversary Emulation for the Cloud

Run any Linux process in a secure, unprivileged sandbox using Landlock. Think firejail, but lightweight, user-friendly, and baked into the kernel.

🔨 A modern multiple reverse shell sessions manager written in go

Tool for port forwarding & intranet proxy

Utility program to perform multiple operations for a given subnet/CIDR ranges.

Protect against malicious open source packages 🤖

Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets

Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONLY.

Windows remote execution multitool

A multi-purpose OSINT toolkit with a neat web-interface.

↕️🤫 Stealth redirector for your red team operation security

Weaponize DLL hijacking easily. Backdoor any function in any DLL.

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educati…

A SimpleHTTPServer written in Go, enhanced with features and with a nice design - https://goshs.de

Multiplayer pivoting solution

Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …

Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist

Abuse trust-boundaries to bypass firewalls and network controls

A tool designed for smuggling interactive command and control traffic through legitimate TURN servers hosted by reputable providers such as Zoom.

Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver

Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act on them: block, reroute, tarpit, or deceive in real time.

AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection

Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scenarios.

The IoT security toolkit to help identify IoT related dashboards and scan them for default passwords and vulnerabilities.

Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operations.