secure-sauce-controller's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
vi/websocat
Command-line client for WebSockets, like netcat (or curl) for ws:// with advanced socat-like functions
v1s1t0r1sh3r3/airgeddon
This is a multi-use bash script for Linux systems to audit wireless networks.
maxchehab/CSS-Keylogging
Chrome extension and Express server that exploits keylogging abilities of CSS.
andrew-d/static-binaries
Various *nix tools built as statically-linked binaries
splunk/attack_range
A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk
aress31/burpgpt
A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities and enables running traffic-based analysis of any type.
last-byte/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
Syslifters/sysreptor
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
FuzzySecurity/Sharp-Suite
Also known by Microsoft as Knifecoat :hot_pepper:
andresriancho/enumerate-iam
Enumerate the permissions associated with AWS credential set
mazen160/secrets-patterns-db
Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
antonioCoco/ConPtyShell
ConPtyShell - Fully Interactive Reverse Shell for Windows
Greenwolf/ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
samratashok/ADModule
Microsoft signed ActiveDirectory PowerShell module
projectdiscovery/asnmap
Go CLI and Library for quickly mapping organization network ranges using ASN information.
CompassSecurity/BloodHoundQueries
TheBurnsy/Vehicle-OSINT-Collection
A comprehensive list of tools that can be used for finding information related to a specific vehicle.
payloadbox/open-redirect-payload-list
🎯 Open Redirect Payload List
s0md3v/MyPapers
Repository for hosting my research papers
p0dalirius/windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
wh0amitz/PetitPotato
Local privilege escalation via PetitPotam (Abusing impersonate privileges).
security-prince/PWK-OSCP-Preparation-Roadmap
Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
daffainfo/match-replace-burp
Useful "Match and Replace" burpsuite rules
OmriBaso/RToolZ
A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.
dievus/lnkbomb
Malicious shortcut generator for collecting NTLM hashes from insecure file shares.
nexxai/CryptoBlocker
A script to deploy File Server Resource Manager and associated scripts to block infected users
nccgroup/WinShareEnum
Windows Share Enumerator
Sq00ky/RunAsPasswd
A RunAs clone with the ability to specify the password as an argument.
d3lb3/KeePass-the-Hash
A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlock the database.