GRR Rapid Response: remote live forensics for incident response

Colored logcat script which only shows log entries for a specific application package.

Lista de eventos tech que acontecem no Brasil

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management

The Deepfake Offensive Toolkit

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Arsenal is just a quick inventory and launcher for hacking programs

Awesome hacking is an awesome collection of hacking tools.

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Tool to look for several security related Android application vulnerabilities

A high performance offensive security tool for reconnaissance and vulnerability scanning

A collection of custom security tools for quick needs.

pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching

OpenRecall is a fully open-source, privacy-first alternative to proprietary solutions like Microsoft's Windows Recall. With OpenRecall, you can easily access your digital history, enhancing your me…

cve-search - a tool to perform local searches for known vulnerabilities

Phishing Campaign Toolkit

Striker is an offensive information and vulnerability scanner.

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

Tools & Interesting Things for RedTeam Ops

Know the dangers of credential reuse attacks.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

🆕 The Multi-Tool Web Vulnerability Scanner.

Find web directories without bruteforce

Your Everyday Threat Intelligence

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat…

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp