Starred repositories
Deploy a small, intentionally insecure, vulnerable Windows Domain for RDP Honeypot fully automatically.
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webho…
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
This repo includes my analysis of some public reports.
A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or hackers find potential security vulnerabilities in Android applications. No need to install on Windows.
Tool to look for several security related Android application vulnerabilities
Secure, Unified, Powerful and Extensible Rust Android Analyzer
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
A Colab For Bug Hunting!
cliffe / SecGen
Forked from SecGen/SecGenCreate randomly insecure VMs
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
This Repo help you to download most helpful GO tools on the system .
LIEF - Library to Instrument Executable Formats (C++, Python, Rust)
gadget-inejctor let's you bypass SSL Pinning using the frida-gadget.
List DTDs and generate XXE payloads using those local DTDs.
The all-in-one browser extension for offensive security professionals 🛠
A collection of scripts I've written to help red and blue teams with malware persistence techniques.
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
A Powershell implementation of PrivExchange designed to run under the current user's context
The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
Collection of methodology and test case for various web vulnerabilities.
Open source pre-operation C2 server based on python and powershell