-
-
RascalRunner Public
A red team tool to leverage Github workflows and self-hosted runners
-
nopcorn.github.io Public
thoughts and ramblings of an offensive security engineer
-
gha-intercept Public
A kubernetes deployment to test Github Actions TLS traffic and runner communications
1 UpdatedApr 24, 2025 -
-
StarTrack-js Public
Forked from seladb/StarTrack-jsGitHub star history and stats - based on JavaScript only!
TypeScript MIT License UpdatedApr 11, 2025 -
heimdall-v2 Public
Forked from 0xPolygon/heimdall-v2Go GNU General Public License v3.0 UpdatedApr 4, 2025 -
RascalRunner-Workflows Public
A companion repository that hold some malicious workflows for use with RascalRunner
UpdatedNov 14, 2024 -
-
githubaudit Public
Uses a Github PAT to assess the security configuration of repositories and provides a report
-
githubaudit-vulnerablerepo Public
A repo with some issues for demonstration purposes
UpdatedOct 23, 2024 -
-
-
-
rr-opsec-wrapper Public
Reusable Github action for use in offensive security workflow
UpdatedAug 28, 2024 -
kasm-api Public
Forked from kasmweb-decompilation/apiKasm API decompiled from 1.15.0 docker image.
Python UpdatedJul 24, 2024 -
-
-
kasm-nginx Public
Forked from kasmweb-decompilation/nginxI wonder what is in kasmweb/nginx
UpdatedMay 11, 2024 -
Mythic Public
Forked from its-a-feature/MythicA collaborative, multi-platform, red teaming framework
JavaScript Other UpdatedApr 24, 2024 -
kasm-windows-service Public
Forked from kasmweb-decompilation/windows-serviceTheir lazy asses forgot to change the executable icon when compiling using PyInstaller. Rookie mistake.
Python UpdatedMar 31, 2024 -
DuckDuckC2 Public
A proof-of-concept C2 channel through DuckDuckGo's image proxy service
-
CuteRAT Public
CuteRAT is a stealthy remote access tool without any dependencies
{{ message }}