Ghidra is a software reverse engineering (SRE) framework

PowerShell for every system!

Metasploit Framework

binary releases of VS Code without MS branding/telemetry/licensing

Oh my tmux! My self-contained, pretty & versatile tmux configuration made with 💛🩷💙🖤❤️🤍

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS, Arch Linux and more

Most advanced XSS scanner.

Credentials recovery project

The single instruction C compiler

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, LoongArch, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, T…

A repository for learning various heap exploitation techniques.

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb

Empire is a PowerShell and Python post-exploitation agent.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Linux privilege escalation auditing tool

A collection of links related to Linux kernel security and exploitation

Course materials for Modern Binary Exploitation by RPISEC

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

The x86 processor fuzzer

Small portable AES128/192/256 in C

A collaborative, multi-platform, red teaming framework

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

An ArchLinux based distribution for penetration testers and security researchers.

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…

OnionScan is a free and open source tool for investigating the Dark Web.

List of awesome penetration testing resources, tools and other shiny things