svtica's Stars
last-byte/PersistenceSniper
Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines. Official Twitter/X account @PersistSniper. Made with ❤️ by @last0x00 and @dottor_morte
cisagov/network-architecture-verification-and-validation
The NAVV (Network Architecture Verification and Validation) tool creates a spreadsheet for network traffic analysis from PCAP data and Zeek logs, automating Zeek analysis of PCAP files, the collation of Zeek logs and the dissection of conn.log and dns.log to create a summary or network traffic in an XLSX-formatted spreadsheet.
dirkjanm/ROADtools
A collection of Azure AD/Entra tools for offensive and defensive security purposes
sapics/ip-location-db
ip to location database by ASN, GeoFeed, Whois, iptoasn.com, db-ip lite, GeoLite2
bettercap/bettercap
The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.
evilsocket/xray
XRay is a tool for recon, mapping and OSINT gathering from public networks.
NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
ProcessusT/HEKATOMB
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
cert-advens/IRM
psypanda/hashID
Software to identify the different types of hashes -
opengs/itarmykit
Aggregates/updates/visualizes tools created by multiple teams of IT Army of Ukraine
royalapplications/toolbox
This repository contains various automation scripts for Royal TS (for Windows) and Royal TSX (for macOS). Also included are dynamic folder samples. This collection consists of scripts by the Royal Apps team or contributions from our great user-base!
kavika13/RemCom
Remote Command Executor: A OSS replacement for PsExec and RunAs - or Telnet without having to install a server. Take your pick :)
GhostPack/SharpWMI
SharpWMI is a C# implementation of various WMI functionality.
GhostPack/Rubeus
Trying to tame the three-headed dog.
deathau/markdownload
A Firefox and Google Chrome extension to clip websites and download them into a readable markdown file.
atc-project/atc-react
A knowledge base of actionable Incident Response techniques
mihaip/infinite-mac
A classic Mac loaded with everything you'd want
jslagrew/cowrieprocessor
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
TheresAFewConors/Sooty
The SOC Analysts all-in-one CLI tool to automate and speed up workflow.
hak5/packetsquirrel-payloads
The Official Packet Squirrel Payload Repository
DShield-ISC/dshield
DShield Raspberry Pi Sensor
BC-SECURITY/Empire
Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
lanmaster53/recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
OTRF/OSSEM-DM
OSSEM Detection Model