A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.

A tool that can help detect and takeover subdomains with dead DNS records

↕️🤫 Stealth redirector for your red team operation security

Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable SSRF candidates.

Scrape domain names from SSL certificates of arbitrary hosts

A container analysis and exploitation tool for pentesters and engineers.

🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educati…

🧬 fiber middleware to automatically generate RESTful API documentation with Swagger

Yet another shellcode runner consists of different techniques for evaluating detection capabilities of endpoint security solutions

gup - Update binaries installed by "go install" with goroutines.

Powerful+Fast+Low Privilege Kubernetes discovery tools

Get related domains / subdomains by looking at Google Analytics IDs

io_uring based rootkit

Office 365 and Exchange Enumeration

Check which CDN providers an IP list belongs to

Security testing tool for Kubernetes, abusing kubelet credentials on public cloud providers.

Epyon is a swiss army knife tool for pentesting DevOps ecosystems.

A client library to interact with Windows RPC services such as MS-SRVS and MS-RRP.

RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a given domain or organization.