Lists (1)
Starred repositories
94
stars
written in Python
Clear filter
A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
Network Infrastructure Penetration Testing Tool
OpenStack Dashboard (Horizon). Mirror of code maintained at opendev.org.
Damn Vulnerable MCP Server
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
Exploits written by the Rhino Security Labs team
A (partial) Python rewriting of PowerSploit's PowerView
DNSChef - DNS proxy for Penetration Testers and Malware Analysts
SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Python script to enumerate users, groups and computers from a Windows domain through LDAP queries
Just another Powerview alternative but on steroids
Credentials gathering tool automating remote procdump and parse of lsass process.
Active Directory ACL exploitation with BloodHound
Bluetooth experimentation framework for Broadcom and Cypress chips.
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving to…
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
A MCP server for using Semgrep to scan code for security vulnerabilities.
Kerberoast with ACL abuse capabilities