0xTomTom's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
icsharpcode/ILSpy
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
twintproject/twint
An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
OWASP/owasp-mastg
The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the controls listed in the OWASP Mobile Application Security Verification Standard (MASVS).
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent.
guardicore/monkey
Infection Monkey - An open-source adversary emulation platform
nomi-sec/PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
epi052/feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
Orange-Cyberdefense/GOAD
game of active directory
danielbohannon/Invoke-Obfuscation
PowerShell Obfuscator
arkadiyt/bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
byt3bl33d3r/OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
es3n1n/no-defender
A slightly more fun way to disable windows defender + firewall. (through the WSC api)
hakluke/hakrevdns
Small, fast tool for performing reverse DNS lookups en masse.
0xsp-SRD/mortar
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
s0md3v/Corsy
CORS Misconfiguration Scanner
blacklanternsecurity/TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
ptoomey3/evilarc
Create tar/zip archives that can exploit directory traversal vulnerabilities
n0fate/chainbreaker
Mac OS X Keychain Forensic Tool
honoki/bbrf-client
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
ukncsc/SME
Pepelux/sippts
Set of tools to audit SIP based VoIP Systems
briskets/CVE-2021-3493
Ubuntu OverlayFS Local Privesc
FSecureLABS/Ninjasploit
A meterpreter extension for applying hooks to avoid windows defender memory scans
praetorian-inc/vulcan
a tool to make it easy and fast to test various forms of injection
MythicAgents/Nimplant
A cross-platform implant written in Nim
minvws/nl-kat-coordination
Repo nl-kat-coordination for minvws
minvws/nl-covid19-notification-app-ios
santosomar/virtualseccons
An ongoing list of virtual cybersecurity conferences.
minvws/nl-covid19-notification-lab-ios
iOS app for experiments with GAEN and Bluetooth protocols