Repositories list

• RedTeam-OffensiveSecurity

  Public
  Tools & Interesting Things for RedTeam Ops

  Python

  •

  MIT License

  •361•0•0•0•Updated Jul 27, 2021Jul 27, 2021

• External-Pentest-Checklist

  Public
  106•0•0•0•Updated May 12, 2021May 12, 2021

• tool-compare

  Public
  HCL

  •

  MIT License

  •60•0•0•0•Updated May 7, 2021May 7, 2021

• drakvuf-sandbox

  Public
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system

  JavaScript

  •

  Other

  •143•0•0•0•Updated Apr 30, 2021Apr 30, 2021

• prisma

  Public
  Next-generation ORM for Node.js & TypeScript | PostgreSQL, MySQL, MariaDB, SQL Server & SQLite

  TypeScript

  •

  Apache License 2.0

  •1.5k•0•0•0•Updated Apr 30, 2021Apr 30, 2021

• tenet

  Public
  A Trace Explorer for Reverse Engineers

  Python

  •

  MIT License

  •133•0•0•0•Updated Apr 28, 2021Apr 28, 2021

• linux-smart-enumeration

  Public
  Linux enumeration tool for pentesting and CTFs with verbosity levels

  Shell

  •

  GNU General Public License v3.0

  •574•0•0•0•Updated Apr 28, 2021Apr 28, 2021

• AzureAD-Attack-Defense

  Public
  This publication is a collection of various common attack scenarios on Azure Active Directory and how they can be mitigated or detected.

  315•0•0•0•Updated Apr 13, 2021Apr 13, 2021

• aws-enumerator

  Public
  The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.

  Go

  •

  MIT License

  •27•0•0•0•Updated Apr 12, 2021Apr 12, 2021

• dfirtrack

  Public
  DFIRTrack - The Incident Response Tracking Application

  Python

  •

  Other

  •74•0•0•0•Updated Apr 10, 2021Apr 10, 2021

• BlackMamba

  Public
  C2/post-exploitation framework

  Python

  •

  MIT License

  •160•0•0•0•Updated Apr 3, 2021Apr 3, 2021

• Storm-Breaker

  Public
  Tool social engineering [Access Webcam & Microphone & Os Password Grabber & Location Finder] With Ngrok

  CSS

  •1.3k•0•0•0•Updated Apr 3, 2021Apr 3, 2021

• VulnWhisperer

  Public
  Create actionable data from your Vulnerability Scans

  Python

  •

  Apache License 2.0

  •267•0•0•0•Updated Mar 31, 2021Mar 31, 2021

• Starkiller

  Public
  Starkiller is a Frontend for PowerShell Empire.

  Vue

  •

  MIT License

  •196•0•0•0•Updated Mar 31, 2021Mar 31, 2021

• retoolkit

  Public
  Reverse Engineer's Toolkit

  Inno Setup

  •

  Apache License 2.0

  •497•0•0•0•Updated Mar 15, 2021Mar 15, 2021

• OSCP-1

  Public
  Our OSCP repo: from popping shells to mental health.

  JavaScript

  •90•0•0•0•Updated Mar 13, 2021Mar 13, 2021

• vajra

  Public
  Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

  JavaScript

  •

  GNU General Public License v3.0

  •159•0•0•0•Updated Mar 13, 2021Mar 13, 2021

• netz

  Public
  Discover internet-wide misconfigurations while drinking coffee

  Go

  •

  MIT License

  •46•0•0•0•Updated Mar 5, 2021Mar 5, 2021

• bucketbunny

  Public
  AWS S3 open bucket poc automated script.

  Shell

  •20•0•0•0•Updated Feb 25, 2021Feb 25, 2021

• Resources-for-Beginner-Bug-Bounty-Hunters

  Public
  A list of resources for those interested in getting started in bug bounties

  1.9k•1•0•0•Updated Feb 25, 2021Feb 25, 2021

• lazyrecon

  Public
  This script is intended to automate your reconnaissance process in an organized fashion

  Shell

  •573•0•0•0•Updated Feb 23, 2021Feb 23, 2021

• Awesome-CobaltStrike-Defence

  Public
  Defences against Cobalt Strike

  MIT License

  •189•0•0•0•Updated Feb 17, 2021Feb 17, 2021

• pillager

  Public
  Pillage filesystems for sensitive information with Go.

  Go

  •

  MIT License

  •21•0•0•0•Updated Feb 17, 2021Feb 17, 2021

• AzureC2Relay

  Public
  AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.

  C#

  •46•0•0•0•Updated Feb 15, 2021Feb 15, 2021

• osrframework

  Public
  OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

  Python

  •

  GNU Affero General Public License v3.0

  •245•0•0•0•Updated Feb 11, 2021Feb 11, 2021

• subfinder

  Public
  Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

  Go

  •

  MIT License

  •1.3k•0•0•0•Updated Feb 9, 2021Feb 9, 2021

• gitpod

  Public
  Gitpod automates the provisioning of ready-to-code development environments.

  TypeScript

  •

  Other

  •1.2k•0•0•0•Updated Feb 5, 2021Feb 5, 2021

• terrascan

  Public
  Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

  Go

  •

  Apache License 2.0

  •499•0•0•0•Updated Feb 4, 2021Feb 4, 2021

• assetfinder

  Public
  Find domains and subdomains related to a given domain

  Go

  •

  MIT License

  •483•0•0•0•Updated Jan 26, 2021Jan 26, 2021

• state-of-cloud-security

  Public
  A collection of 2020 artifacts describing the major pain points, vulnerabilities and concerns with Cloud Security.

  8•0•0•0•Updated Jan 24, 2021Jan 24, 2021