Tun-leads's Stars
Stirling-Tools/Stirling-PDF
#1 Locally hosted web application that allows you to perform various operations on PDF files
projectdiscovery/nuclei
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.
BishopFox/sliver
Adversary Emulation Framework
megadose/toutatis
Toutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
XZB-1248/Spark
✨Spark is a web-based, cross-platform and full-featured Remote Administration Tool (RAT) written in Go that allows you control all your devices anywhere. Spark是一个Go编写的,网页UI、跨平台以及多功能的远程控制和监控工具,你可以随时随地监控和控制所有设备。
psiinon/open-source-web-scanners
A list of open source web security scanners
BushidoUK/Ransomware-Tool-Matrix
A resource containing all the tools each ransomware gangs uses
PhonePe/mantis
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
CICADA8-Research/RemoteKrbRelay
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
rsmudge/armitage
Automatically exported from code.google.com/p/armitage
ricardojoserf/TrickDump
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
lypd0/DeadPotato
DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.
klezVirus/DriverJack
Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths
Teach2Breach/Tempest
A command and control framework written in rust.
MzHmO/LeakedWallpaper
Leak of any user's NetNTLM hash. Fixed in KB5040434
nerdyslacker/desktop-web-browsers
Almost full list of all desktop web browsers
0x6rss/WhatsApp-extension-manipulation-PoC
Android malware (.apk) can be spread through a fake PDF document by manipulating the file extension in the WhatsApp application. PoC is available in this repo
CCob/Shwmae
TierZeroSecurity/edr_blocker
Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination IP addresses are parsed based on the server name in TLS Client Hello packet and the provided blocked server name (or blocked string) list in the file.
deepinstinct/ShimMe
cipher387/code-understanding-tools
Tools for understanding other people's code
cassanof/pantegana
A nearly undetectable reverse HTTPS Botnet+RAT C2 Handler and Client written in Go
OSINT-TECHNOLOGIES/dpulse
DPULSE - Tool for complex approach to domain OSINT
Cobalt-Strike/sleepmask-vs
A simple Sleepmask BOF example
DrunkF0x/ADSpider
Monitor changes in Active Directory with replication metadata
emiliensocchi/azurehound-queries
🌩️ Collection of BloodHound queries for Azure
SadProcessor/BloodHoundOperator
BloodHound PowerShell client
RLBot/RLBotPack
A collection of ready-to-use bots made by the community.
mmiszczyk/CVE-2024-33352
BlueStacks privilege escalation through VM backdooring
Ragmthy/gralhix_osint_exercises
Repository for write-ups of Sofia Santos' OSINT exercises