WasmForge — compile Go and C# programs to single-binary, WASM-sandboxed native executables with polymorphic output.

Sweeping radar style ADS-B traffic display for the avgeek in you!

Open-source ESP32 firmware for a 1.28″ round display that shows live ADS-B aircraft around your location as a sonar-style plane radar.

RoguePlanet Windows Defender Vulnerability

Autonomous AI pentesting engine performing continuous offensive security across web, cloud, AD and Kubernetes. Uses agentic reasoning, real exploit execution and attack path analysis to deliver pro…

Evasive loader for .NET Framework assemblies

Proof of concept to show that Edge stores credentials in cleartext

Copy Fail (CVE-2026-31431): 9-year-old Linux kernel LPE found by Theori's Xint Code

Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, a…

claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s…

Fritter is a heavily modified fork of TheWover and Odzhan's Donut shellcode generator.

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

A Cobalt Strike Beacon Object File that exploits the BlueHammer vulnerability that to obtain a copy of the SAM database.

Ansible + Vagrant + Hyper-V + Vulnerable AD 😎

Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the white paper Certified Pre-Owned.

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Small offensive network toolkit for Raspberry Pi (+ Waveshare 1.44″ LCD HAT) and Cardputer Zero inspired by pager and sharkjack fonctionnalities. For redteam and educational purposes only.

SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.

A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for quick AD enumeration.

Open source repository of plugins primarily intended for knowledge workers to use in Claude Cowork

Global threat map. Learn wars, conflicts, military bases and history of nations.

A C# tool for extracting information from SCCM PXE boot media.

A wireless penetration testing toolkit that automates the setup of a test access point and handshake capture process for authorized security assessments.

An educational repository focused on Evil Portals: rogue captive portals designed to mimic legitimate login systems.

Shannon is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities before t…

Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud environment.

Mass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478

A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA server using the MS-WCCE protocol over DCOM and It bypasses …