energyadj's Stars
dockur/windows
Windows inside a Docker container.
vulhub/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Lightning-AI/litgpt
20+ high-performance LLMs with recipes to pretrain, finetune and deploy at scale.
xM4ddy/OFGB
GUI Tool To Remove Ads From Various Places Around Windows 11
duckduckgo/tracker-radar
Data set of top third party web domains with rich metadata about them
protectai/ai-exploits
A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
0xKayala/NucleiFuzzer
NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enumeration techniques
hakluke/weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
Mazars-Tech/AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
h4r5h1t/webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
TakSec/google-dorks-bug-bounty
A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting
Flangvik/TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
Kyuu-Ji/Awesome-Azure-Pentest
A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.
RedTeamPentesting/pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
dafthack/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
fiddyschmitt/File-Tunnel
Tunnel TCP connections through a file
assetnote/surf
Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable SSRF candidates.
BishopFox/sj
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
drak3hft7/Cheat-Sheet---Active-Directory
This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.
xaitax/CVE-2024-6387_Check
CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
Neo23x0/vti-dorks
Awesome VirusTotal Intelligence Search Queries
0xthirteen/Carseat
Python implementation of GhostPack's Seatbelt situational awareness tool
Malandrone/PowerDecode
PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs code dynamic analysis, extracting malware hosting URLs and checking http response.It can also detect if the malware attempts to inject shellcode into memory.
craiu/mobiletrackers
A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted marketing and aggressive ads libraries.
S3cur3Th1sSh1t/SharpVeeamDecryptor
Decrypt Veeam database passwords
fransr/unpack-burp
For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)
FuzzySecurity/SANS-HackFest-2023
fox-it/cisco-ios-xe-implant-detection
Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)
Shadow0ps/CVE-2023-20198-Scanner
This is a webshell fingerprinting scanner designed to identify implants on Cisco IOS XE WebUI's affected by CVE-2023-20198 and CVE-2023-20273
mkaiser/ESP32-CAN
PCB with ESP32 and CAN bus. For controlling CAN-devices like heatpumps via ESPHome