Stars
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Original Proof-of-Concepts for React2Shell CVE-2025-55182
Venom C2 is a dependency‑free Python3 Command & Control framework for redteam persistence
Git Source Code Mirror - This is a publish-only repository but pull requests can be turned into patches to the mailing list via GitGitGadget (https://gitgitgadget.github.io/). Please follow Documen…
binary releases of VS Code without MS branding/telemetry/licensing
📦 Get a clean, ready-to-go Linux box in seconds.
A tool to dump the login password from the current linux user
byebyeAV is a tool created by @amroes which bypassed the latest version at the time of windows defender, Sophos and Kaspersky
A complete, beginner-friendly bug bounty roadmap that takes you from zero experience to earning your first bounty.
pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
FastAPI framework, high performance, easy to learn, fast to code, ready for production
A browser automation framework and ecosystem.
🐢 Open-Source Evaluation & Testing library for LLM Agents
DeepTeam is a framework to red team LLMs and LLM systems.
CrushFTP <= 10.5.1 Remote Code Execution. Researchers: Ryan Emmons, Evan Malamis
A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.
Powershell tool to automate Active Directory enumeration.
The most customisable and low-latency cross platform/shell prompt renderer
RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀
scikit-learn: machine learning in Python
Critical Splunk Vulnerability CVE-2024-36991: Patch Now to Prevent Arbitrary File Reads
Terminal based intercepting proxy written in rust with tmux and vim as user interface.