Stars
NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enumeration te…
A fast and comprehensive tool for organizational network scanning
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
This repo contains code for the parser to extract data from .tm7 and .tb7 files. The project can by consumed as a NuGet package that parses .tm7 and .tm7 files or as a cross-platform CLI tool.
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
This is the source code for the original Microsoft 3D Movie Maker released in 1995. This is not supported software.
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
0x25bit / hackingLibrary
Forked from jwx0539/hackingLibraryAPT, Cyber warfare, Penetration testing, Zero-day,Exploiting,Fuzzing,Privilege-Escalation,browser-security,Spyware,Malwres evade anti-virus detection, Rookit CYPTER, Antiviruses Bypass…
A collection of hacking tools, resources and references to practice ethical hacking.
Tool for Active Directory Certificate Services enumeration and abuse
My attempts at solving the Cipher Challenge by Simon Singh
Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, and process activity on those runners, detecting threats in re…
Kubernetes Security Checklist and Requirements - All in One (authentication, authorization, logging, secrets, configuration, network, workloads, dockerfile)
Quality domain agnostic regular expression pattern matcher that persists results to SARIF
Checks our resources to monitor Identity Changes
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
A curated list of amazingly awesome Burp Extensions
A grammar-based custom mutator for AFL++
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
This is a list of offensive security tools that I have curated and actaully saved..
Open Source Intelligence Interface for Deep Web Scraping
Headless chrome/chromium automation library (unofficial port of puppeteer)
A guide to writing a DNS Server from scratch in Rust