Stars
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Deserialization payload generator for a variety of .NET formatters
Simple animated GIF screen recorder with an easy to use interface
RfidResearchGroup / ChameleonMini
Forked from emsec/ChameleonMiniThe ChameleonMini is a versatile contactless smartcard emulator compliant to NFC. The ChameleonMini was first developed by KAOS. This is NOT the official repo for KAOS's ChameleonMini. For further …
Blockchain technology has to be one of the biggest technology innovations of the past few years. The top emerging blockchain development trends are crypto coins, NFT, Defi, and even metaverse. Nowa…
Tools to work with android .dex and java .class files
A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.
A Python based ingestor for BloodHound
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
Medusa is a speedy, parallel, and modular, login brute-forcer.
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
An advanced memory forensics framework
Search Exploitable Software on Linux
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
BC-SECURITY / Empire
Forked from EmpireProject/EmpireEmpire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
The cheat sheet about Java Deserialization vulnerabilities
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.