Starred repositories
基于 AI Agent + MCP 工具链 + 渗透 Skill 编排, 配合大语言模型, 自然语言输入 → 自动完成「信息收集 → 漏洞发现 → 漏洞利用 → 报告生成」全流程。
A shitty vibe coded gowitness wrapper because I didn't want to repeat the same commands over and over
RoguePlanet Windows Defender Vulnerability
One command. 29 battle-tested security checks built into every AI coding assistant you already use without leaving your IDE.
Open-source Claude Code skills, agents, and slash commands for AI-powered penetration testing, bug bounty hunting, and security research
Self-hosted dark web OSINT platform. Automated threat intelligence from query to graph in 13 steps. Free alternative to Recorded Future, DarkOwl, and Flare.
A modern platform for visual, flexible, and extensible graph-based investigations. For cybersecurity analysts and investigators.
🐧 Abuse of Google Colab for cracking hashes.
GreenPlasma Windows CTFMON Arbitrary Section Creation Elevation of Privileges Vulnerability
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
bmjanet / nxc-sweep-ssh-add
Forked from corey-farley/nxc-sweepBash wrapper for NetExec to quickly validate compromised credentials across SMB, WinRM, RDP, MSSQL, and FTP
A lightweight client for managing MariaDB, MySQL, SQL Server, PostgreSQL, SQLite, Interbase and Firebird, written in Delphi and Lazarus/FreePascal
A professional, automated reconnaissance framework for bug bounty hunters and penetration testers. Integrates 12+ tools including Subfinder, Amass, DNSx, HTTPx, Naabu, Nuclei, Katana and more.
Everything for pentest. | 渗透测试知识库,以 AI Agent 可执行的格式沉淀安全方法论。
BOF for Havoc that copies locked Windows files (SAM, SYSTEM, NTDS.dit) via raw MFT parsing — no VSS, no Registry APIs, no PowerShell
Automagically reverse-engineer REST APIs via capturing traffic
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Simple bash script to spray known credentials against multiple services with netexec
Deep Packet Inspection • Traffic Forensics • Network Threat Detection
Open-source Django-based website template for musicians, originally created for nlytnmusic (Siddhesh Parekh). It enables showcasing songs, managing events, sharing blog posts, and renting out music…
Comprehensive 2026 OSINT guide — 450+ tools, AI intelligence, methodologies & ethics across 35 sections for investigation & threat intel.
Snoop — инструмент разведки на основе открытых данных (OSINT world)
[WIP] Extensible LLM-powered wordlist generator for penetration testing. Creates intelligent, context-aware wordlists using AI to understand seed word relationships. Highly configurable with suppor…
Daily updates from leaked data search engines, aggregators and similar services.
🔍 Search anyone's digital footprint across 300+ websites