Fudgec2FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
KnaryA simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
InvokerPenetration testing utility, and antivirus assessment tool.
Awae PreparationThis repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Invoke ApexA PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Black WidowGUI based offensive penetration testing tool (Open Source)
CorsmeCross Origin Resource Sharing MisConfiguration Scanner
Punk.pyunix SSH post-exploitation 1337 tool
OseeCollection of resources for my preparation to take the OSEE certification.
Pentest NotesCollection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)
Atomic Red Team Intelligence C2ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.
ThecollectiveThe Collective. A repo for a collection of red-team projects found mostly on Github.
Zynix Fusionzynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.
Pentest⛔️ offsec batteries included
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
KeyloggerGet Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
BigbountyreconBigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
ChimeraChimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
VanquishVanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Oscp PwkThis is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.
Vaultswiss army knife for hackers
Black Hat RustApplied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB
FfmFreedom Fighting Mode: open source hacking harness
RmiscoutRMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
EastExploits and Security Tools Framework 2.0.1
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
InfosecHouseInfosec resource center for offensive and defensive security operations.
keyloggerWindows OS keylogger with a hook mechanism (i.e. with a keyboard hook procedure).
empirectfEmpireCTF – write-ups, capture the flag, cybersecurity
007-TheBondThis Script will help you to gather information about your victim or friend.
java-reverse-tcpJAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.
oscp-omnibusA collection of resources I'm using while working toward the OSCP
ShellyAutomatic Reverse Shell Generator
BifrostBifrost C2. Open-source post-exploitation using Discord API
meteorA cross-platform C2/teamserver supporting multiple transport protocols, written in Go.
WireBirbA scapy based module for programming offensive and defensive networking tools easier than before.