VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

This map lists the essential techniques to bypass anti-virus and EDR

A simple IMAP password sprayer

Gather and update all available and newest CVEs with their PoC.

A useful wordlist made from French Canadian leaked passwords!

The Hunt for Malicious Strings

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

windows-kernel-exploits Windows平台提权漏洞集合

Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.

Python program to exploit stack-based buffer overflows.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

OWASP Web Application Security Testing Checklist

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

The Hunting ELK

A list of interesting payloads, tips and tricks for bug bounty hunters.

A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily replace the variables with content. Data is saved temporarily i…

Investigate malicious Windows logon by visualizing and analyzing Windows event log

😎 Awesome lists about all kinds of interesting topics

A curated list of awesome infosec courses and training resources.

A collection of awesome penetration testing resources, tools and other shiny things