Stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
fsociety Hacking Tools Pack – A Penetration Testing Framework
A swiss army knife for pentesting networks
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Reverse engineering and pentesting for Android applications
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors
Low bandwidth DoS tool. Slowloris rewrite in Python.
OSINT Tool for Finding Passwords of Compromised Email Addresses
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Stealing Signatures and Making One Invalid Signature at a Time
Striker is an offensive information and vulnerability scanner.
Know the dangers of credential reuse attacks.
Gives you one-liners that aids in penetration testing operations, privilege escalation and more
Run PowerShell command without invoking powershell.exe
QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into account…
A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks
DKMC - Dont kill my cat - Malicious payload evasion tool
GlobaLeaks is a free and open-source whistleblowing software enabling anyone to easily set up and maintain a secure reporting platform.
A PoC backdoor that uses Gmail as a C&C server