Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

C++ 564 90 Updated May 22, 2025

ReversecLabs / drozer

The Leading Security Assessment Framework for Android.

Python 4,360 816 Updated Jun 24, 2025

frida / frida

Clone this repo to build Frida

Meson 18,924 1,931 Updated Nov 5, 2025

iBotPeaches / Apktool

A tool for reverse engineering Android apk files

Java 23,295 3,845 Updated Nov 3, 2025

system-linux / FazJammer

A minimal, simple and effective jammer that jams Wi-Fi, BLE and 2.4 GHz band.

C 1,371 99 Updated Nov 1, 2025

vulfilip / grouppvm

Vulnerable Windows Server 2012 VM made for practicing certain Active Directory attacks.

20 1 Updated Jun 13, 2023

U53RW4R3 / ShortcutGen

A shortcut generator that weaponizes as payloads.

Shell 13 5 Updated Sep 19, 2025

sikumy / sauron

Fast context enumeration for newly obtained Active Directory credentials.

Python 83 4 Updated Aug 26, 2025

sikumy / spearspray

Enhance Your Active Directory Password Spraying with User Intelligence.

Python 299 28 Updated Aug 25, 2025

joaoviictorti / hypnus

Memory Obfuscation in Rust

Rust 257 24 Updated Nov 5, 2025

google / tsunami-security-scanner-plugins

This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

Java 941 211 Updated Oct 15, 2025

chaitin / xray

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Vue 11,284 1,873 Updated Oct 29, 2024

jaeles-project / jaeles-signatures

Default signature for Jaeles Scanner

324 70 Updated Apr 9, 2022

wapiti-scanner / wapiti

Web vulnerability scanner written in Python3

Python 1,542 239 Updated Nov 5, 2025

trap-bytes / 403jump

HTTP 403 bypass tool

Go 602 64 Updated Mar 16, 2024

MatheuZSecurity / RingReaper

Linux post-exploitation agent that uses io_uring to stealthily bypass EDR detection by avoiding traditional syscalls.

C 341 53 Updated Aug 29, 2025

puppeteer / puppeteer

JavaScript API for Chrome and Firefox

TypeScript 92,792 9,323 Updated Nov 5, 2025

microsoft / playwright

Playwright is a framework for Web Testing and Automation. It allows testing Chromium, Firefox and WebKit with a single API.

TypeScript 78,996 4,788 Updated Nov 5, 2025

Textualize / textual

The lean application framework for Python. Build sophisticated user interfaces with a simple Python API. Run your apps in the terminal and a web browser.

Python 32,001 1,008 Updated Nov 4, 2025

charmbracelet / bubbletea

A powerful little TUI framework 🏗

Go 36,306 1,021 Updated Nov 5, 2025

unixfox / pupflare

A webpage proxy that request through Chromium (puppeteer) - can be used to bypass Cloudflare anti bot / anti ddos on any application (like curl)

JavaScript 420 82 Updated Nov 1, 2025

FlareSolverr / FlareSolverr

Proxy server to bypass Cloudflare protection

Python 11,322 921 Updated Nov 4, 2025

Eltik / Puppeteer-Bypass

Bypassing CloudFlare's anti-bot challenge with Puppeteer optimizations

TypeScript 71 8 Updated Nov 20, 2024

spyboy-productions / CamXploit

Find, analyze, and check for exposed IP cameras with open ports, known vulnerabilities, and weak login credentials.

Python 643 113 Updated Jul 19, 2025

fin3ss3g0d / secretsdump.py

Enhanced version of secretsdump.py from Impacket. Adds multi-threading and accepts an input file with a list of target hosts for simultaneous secrets extraction.

Python 242 32 Updated Jul 31, 2023

Black Hat Ethical Hacking blackhatethicalhacking

Lists (1)

Black Hat 🎩 Ethical Hacking Tools

Starred repositories

vulnerability-scanner

sql-injection