kubeaudit helps you audit your Kubernetes clusters against common security controls

evilginx3 + gophish

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

Fetch many paths for many hosts - without killing the hosts

Small, fast tool for performing reverse DNS lookups en masse.

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

OSINT tools and more but without API key

Peirates - Kubernetes Penetration Testing tool

Review Access - kubectl plugin to show an access matrix for k8s server resources

🚫 Advanced tool for security researchers to bypass 403/40X restrictions through smart techniques and adaptive request manipulation. Fast. Precise. Effective.

ToolHive makes deploying MCP servers easy, secure and fun

Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.

Reflective PE packer.

A wordlist framework to fullfill your kinks with your wordlists. For security researchers, bug bounty and hackers.

Open Source EDR for Windows

SSH based reverse shell

The fastest dork scanner written in Go.

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

Utility program to perform multiple operations for a given subnet/CIDR ranges.

A toolkit to attack Office365

Rapid7 | insightCloudSec | Kubernetes RBAC Power Toys - Visualize, Analyze, Generate & Query

Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)

Fast and configurable TLS grabber focused on TLS based data collection.

A unique technique to execute binaries from a password protected zip

Muraena is an almost-transparent reverse proxy aimed at automating phishing and post-phishing activities.

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

Cloudlist is a tool for listing Assets from multiple Cloud Providers.