Collection of evilginx2's phishlets as training materials in Phishing Operations by Archonlabs Training

Updated ConfuserEX, an open-source, free obfuscator for .NET applications

Sophisticated cyber penetration attacks is a series of advanced techniques, notes and guidance that will help you to prepare in your career as a hacker along with your journey.

HTTP file upload scanner for Burp Proxy

MacOS system extension that allows applications to pass audio to other applications. Soundflower works on macOS Catalina.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Reverse Engineer's Toolkit

a file-sharing tool that allows you to find the responsible person in case of a leakage

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

Sandman is a NTP based backdoor for red team engagements in hardened networks.

Apply a divide and conquer approach to bypass EDRs

The official Exploit Database repository

bypass-url-parser

CrackQL is a GraphQL password brute-force and fuzzing utility.

In-depth Attack Surface Mapping and Asset Discovery_AI_Experimentation_by_SaintDruG

A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.

Python script to track latest cybersecurity threats.

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Finding all things on-prem Microsoft for password spraying and enumeration.

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs

Password list generator that focuses on keywords mutated by commonly used password creation patterns

A simple multi-threaded distributed SSH brute-forcing tool written in Python

A tool for checking if MFA is enabled on multiple Microsoft Services

With EmailAnalyzer you can analyze your suspicious emails. You can extract headers, links and hashes from the .eml file

Python Based Crypter That Can Bypass Any Kinds Of Antivirus Products

Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy…

linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓