Pinned Repositories
bashbunny-payloads
Payloads for the Hak5 Bash Bunny
kube-hunter
Hunt for security weaknesses in Kubernetes clusters
metasploit-payloads
Unified repository for different Metasploit Framework payloads
mimikatz
A little tool to play with Windows security
ntdsxtract
Active Directory forensic framework
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PwnAuth
ScoutSuite
Multi-Cloud Security Auditing Tool
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
WebMap
WebMap-Nmap Web Dashboard and Reporting
SYN-ACK Security LLC's Repositories
synacksecurity/kube-hunter
Hunt for security weaknesses in Kubernetes clusters
synacksecurity/metasploit-payloads
Unified repository for different Metasploit Framework payloads
synacksecurity/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
synacksecurity/PwnAuth
synacksecurity/ScoutSuite
Multi-Cloud Security Auditing Tool
synacksecurity/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
synacksecurity/WebMap
WebMap-Nmap Web Dashboard and Reporting
synacksecurity/AggressorScripts
Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
synacksecurity/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
synacksecurity/aws_public_ips
Fetch all public IP addresses tied to your AWS account. Works with IPv4/IPv6, Classic/VPC networking, and across all AWS services
synacksecurity/beef
The Browser Exploitation Framework Project
synacksecurity/BloodHound
Six Degrees of Domain Admin
synacksecurity/cloudsploit
Cloud Security Posture Management (CSPM)
synacksecurity/cuckoo
Cuckoo Sandbox is an automated dynamic malware analysis system
synacksecurity/discover
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
synacksecurity/evil-winrm
The ultimate WinRM shell for hacking/pentesting
synacksecurity/hcxdumptool
Small tool to capture packets from wlan devices.
synacksecurity/hcxtools
Portable solution for capturing wlan traffic and conversion to hashcat formats (recommended by hashcat) and to John the Ripper formats. hcx: h = hash, c = capture, convert and calculate candidates, x = different hashtypes
synacksecurity/kube-bench
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
synacksecurity/managed-kubernetes-auditing-toolkit
All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.
synacksecurity/metasploit-framework
Metasploit Framework
synacksecurity/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
synacksecurity/osquery
SQL powered operating system instrumentation, monitoring, and analytics.
synacksecurity/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
synacksecurity/ptf
The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
synacksecurity/recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
synacksecurity/sliver
Implant framework
synacksecurity/SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient
synacksecurity/syncthing
Open Source Continuous File Synchronization
synacksecurity/wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.