Stars
AdamsScan is an automated subdomain enumeration script that utilizes multiple popular tools and APIs like Sublist3r, Amass, Subfinder, crt.sh, findomain and TheHarvester. It helps security research 8000
SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source code scanner and for URL that detects hardcoded secrets like A…
Very Vulnerable Management API (VVMA) is a deliberately insecure RESTful API built with Node.js for educational and testing purposes. It includes vulnerabilities from the OWASP Top 10 API, allowing…
Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io
Collection of hunting resources for Microsoft Azure
This is the word list for fuzzing kubernetes.
Some files for bruteforcing certain things.
DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…
A Frida script that disables Flutter's TLS verification
IntelOwl: manage your Threat Intelligence at scale
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuos monitoring, security assessments and audits, incident response, compliance, harden…
The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
The SpecterOps project management and reporting engine
A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
Dump cookies and credentials directly from Chrome/Edge process memory
This python program gets all the saved passwords, credit cards and bookmarks from chromium based browsers supports chromium 80 and above!
Create a private Discord CTI "Dashboard" using various Discord bots It,'s a simple and effective way to stay informed and up-to-date on the latest developments and news in Offensive Security World
PatrowlHears - Vulnerability Intelligence Center / Exploits
📡 PoC auto collect from GitHub.