A flexible Docker Compose template to host various apps using Traefik and Authelia, focusing on media streaming.

Execute commands interactively on remote Windows machines using the WinRM protocol

Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)

dddd是一款使用简单的批量信息收集,供应链漏洞探测工具，旨在优化红队工作流，减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标

Codespaces but open-source, client-only and unopinionated: Works with any IDE and lets you use any cloud, kubernetes or just localhost docker.

🕳 bore is a simple CLI tool for making tunnels to localhost

PoC Implementation of a fully dynamic call stack spoofer

In-depth ldap enumeration utility

A fully open-source headless CMS that supports Markdown and Visual Editing

For empowering community 🌱

PP-finder Help you find gadget for prototype pollution exploitation

Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE

The best tool for finding one gadget RCE in libc.so.6

TheThing: an open-source tool to detect DOM Clobbering vulnerabilities

DOM Clobbering Wiki, Browser Testing, and Payload Generation

PoCs and tools for investigation of Windows process execution techniques

OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Cloud-native search engine for observability. An open-source alternative to Datadog, Elasticsearch, Loki, and Tempo.

Tantivy is a full-text search engine library inspired by Apache Lucene and written in Rust

Obfuscate Go builds

Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.

Automated testing to find logic and performance bugs in database systems

Publication-ready NN-architecture schematics.

flask extension for integration with the awesome pydantic package

A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)

Redeye is a tool intended to help you manage your data during a pentest operation

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

secureCodeBox (SCB) - continuous secure delivery out of the box