Hunts out CobaltStrike beacons and logs operator command output

Graph visualization of wireless client and access point relationships

Detect and respond to Cobalt Strike beacons using ETW.

A script to run with mitmproxy to inject a bearer token into every request.

Beetlebug is an open source insecure Android application with CTF challenges built for Android Penetration Testers and Bug Bounty hunters.

Add a local REST API to Burp Suite Pro for instant, scriptable control of proxy, scanning, and scope.

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

Versions of BetaFast used as examples in the Introduction to Hacking Desktop Applications blog series

Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…

BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source code.

BGP and RPKI monitoring tool. Pre-configured for real-time detection of visibility loss, RPKI invalid announcements, hijacks, ROA misconfiguration, and more.

Tool to view HTTP history exported from Burp Suite Community Edition

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Browser In The Browser (BITB) Templates

BitCracker is the first open source password cracking tool for memory units encrypted with BitLocker

Blog at the bitsadm.in domain

Sphinx

A fork of openssh-portable for penetration testing purposes.

Blackbox protobuf is a Burp Suite extension for decoding and modifying arbitrary protobuf messages without the protobuf type definition.

An Adavnced Automation Tool For Web-Recon Developed For Linux Systems

An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability

Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates when…

Find exposed data in Azure with this public blob scanner

Six Degrees of Domain Admin

Automation of Active Directory penetration testing tasks on top of BloodHound CE

Six Degrees of Domain Admin