A list of public penetration test reports published by several consulting firms and academic security groups.

Evil-M5Project is an innovative tool developed for ethical hacking and exploration of WiFi networks. It's compatible with Cardputer, Atoms3, Fire, core2. You can scan, monitor, and interact with Wi…

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Weaponized Browser-in-the-Middle (BitM) for Penetration Testers

Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit

A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office365 users.

The most complete code auditing platform with thousands of real-world challenges

Adversarial Interception Mission Oriented Discovery and Disruption Framework, or AIMOD2, is a structured threat hunting approach to proactively identify, engage and prevent cyber threats denying or…

https://lolad-project.github.io/

b3acon - a mail-based C2 that communicates via an in-memory C# IMAP client dynamically compiled in memory using PowerShell.

AzDevRecon is a powerful web-based enumeration tool for offensive security professionals, red teamers, and pentesters targeting Azure DevOps. It leverages token-based authentication to uncover proj…

NTLMv2 Hash Leak via COM + Auto-Execution