Mr3ch0's Stars
RunaCapital/awesome-oss-alternatives
Awesome list of open-source startup alternatives to well-known SaaS products 🚀
telekom-security/tpotce
🍯 T-Pot - The All In One Multi Honeypot Platform 🐝
mitre/caldera
Automated Adversary Emulation Platform
lanmaster53/recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
guelfoweb/knock
Knock Subdomain Scan
0x6d69636b/windows_hardening
HardeningKitty and Windows Hardening Settings
knavesec/CredMaster
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
corca-ai/awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
runZeroInc/sshamble
SSHamble: Unexpected Exposures in SSH
fyoorer/ShadowClone
Unleash the power of cloud
Yamato-Security/EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
drak3hft7/Cheat-Sheet---Active-Directory
This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell.
evilsocket/nerve
Instrument any LLM to do actual stuff.
CravateRouge/autobloody
Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound
mrwadams/stride-gpt
An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRIDE methodology.
zjorz/Public-AD-Scripts
AD Scripts
lanmaster53/honeybadger
kh4sh3i/cloud-penetration-testing
A curated list of cloud pentesting resource, contains AWS, Azure, Google Cloud
BishopFox/llm-testing-findings
LLM Testing Findings Templates
nathanmcnulty/nathanmcnulty
Unit-259/PsInPic
A powershell module for hiding payloads in the pixels of images
Tanguy-Boisset/bloodhound-automation
Automatically run and populate a new instance of BH CE
nullenc0de/FFUF-Workflow-Tool
This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports both direct file input and piped input for wordlists.
DXC-StrikeForce/Nemesis-Ansible
Automatically deploy Nemesis
imhego/OWASP-LLM
OWASP LLM (Large Language Model) Top 10
GoVanguard/AzureSnake
A suite of PowerShell scripts to automate portions of Azure Risk Assessments and Penetration Tests
nullenc0de/Azure-Serverless-Function-with-API-Management-Automation
emiliensocchi/azure-hunting
Collection of hunting resources for Microsoft Azure
tsmoo/x86_64_reverse_shell_generator
andrespoliv/tool_wrapper_for_authenticated_scans
Script to automate the process of extracting cookies from a web application and injecting them into a command which starts a scan. Current support for Nuclei, Katana and Shortscan. Commands are written for Powershell and tools are uploaded as standalone executable files, if running from Linux, adjust both aspects for compatibility.