Stars
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…
GRR Rapid Response: remote live forensics for incident response
Mittn: Security test tool runner for test automation in CI
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
Read-only mirror of Wireshark's Git repository at https://gitlab.com/wireshark/wireshark. You're welcome to submit pull requests there.
Active Directory permissions (ACL/ACE) auditing tools
PowerSploit - A PowerShell Post-Exploitation Framework
Test HTTP cache directives for various file types
The Dirty Secrets They Didn't Teach You In Pentesting Class
Cuckoo Sandbox is an automated dynamic malware analysis system
Metasploit modules that didn't make it into trunk for some reason or the other
A framework for analyzing/testing/fuzzing network applications.
Miscellaneous tools and patches that I have written/hacked/forked over the years
A JBoss script for obtaining remote shell access
A collection of scripts and tools I have authored to aid in Pentesting, provided under GNUv3, NOTE: I am not liable if you use them for illegal purposes, these scripts should only be used on your o…
Partial stuxnet source decompiled with hexrays, if anyone has better decompile tools feel free to contribute better versions.
Plugins for Metasploit Framework
Modules, Scripts, Plugins for the Metasploit Framework
A Java Server Faces (JSF) testing tool for decoding view state and creating view state attack vectors.
Originally an all encompassing helper script, more now a library of scripts in bash and python to aid in Systems Administration tasks and extend functionality.
rlane / rbvmomi
Forked from vmware-archive/rbvmomiRuby interface to the VMware vSphere API. vmware/rbvmomi is the official repo.