This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attack execution, and cybersecurity policy analysis.

Collection of OPSEC Tradecraft and TTPs for Red Team Operations

Materials for the workshop "Red Team Ops: Havoc 101"

Kraken, a modular multi-language webshell coded by @secu_x11

Red Team Operator: Malware Development Essentials Course

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

Scripts I use during pentest engagements.

Repo of thesis related projects, files , .., etc

Main Build directory

A round-trip obfuscated HTTP file transfer setup built to bypass IDS detections.

YANG-based toolchain including NETCONF and RESTCONF interfaces and an interactive CLI

Websec interview questions by tib3rius answered

how to look for Leaked Credentials !

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

CryptoNice is both a command line tool and library which provides the ability to scan and report on the configuration of SSL/TLS for your internet or internal facing web services. Built using the s…

Avocado is a powerful C2 framework written in Python with stageless implants in Rust. Avocado's implant runs seamlessly on both Linux and Windows, securely communicating with the server via mutual …

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

Payload encoding utility to effectively lower payload entropy.

Study Notes For Web Hacking / Web安全学习笔记

Python3 utility for creating zip files that smuggle additional data for later extraction

🥷 SecArchive - Cybersecurity Resource Collection A curated archive of high-quality resources for learning cybersecurity, bug bounty, ethical hacking, and penetration testing.