t0ph's Stars
ethereumbook/ethereumbook
Mastering Ethereum, by Andreas M. Antonopoulos, Gavin Wood
ffuf/ffuf
Fast web fuzzer written in Go
GTFOBins/GTFOBins.github.io
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
projectdiscovery/subfinder
Fast passive subdomain enumeration tool.
claudiodangelis/qrcp
:zap: Transfer files over wifi from your computer to your mobile device by scanning a QR code without leaving the terminal.
toniblyx/my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
michenriksen/aquatone
A Tool for Domain Flyovers
cchen156/Learning-to-See-in-the-Dark
Learning to See in the Dark. CVPR 2018
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
vedderb/bldc
The VESC motor control firmware
projectdiscovery/dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
salesforce/cloudsplaining
Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.
ipinfo/cli
Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
mandatoryprogrammer/CursedChrome
Chrome-extension implant that turns victim Chrome browsers into fully-functional HTTP proxies, allowing you to browse sites as your victims.
Arvanaghi/SessionGopher
SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.
appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training
Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
jswanner/DontF-WithPaste
Google Chrome extension that prevents the blocking of pasting into input fields
nyxgeek/o365recon
retrieve information via O365 and AzureAD with a valid cred
utkusen/shotlooter
a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
trailofbits/it-depends
A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositories.
bastibl/gnuradio-android
GNU Radio Android Toolchain
ransurf/obsidian-resources
I can't seem to upload .md files on WordPress, so this will have to do.
nuket/TwitGrid
Because TweetDeck is a mess at times.
FortyNorthSecurity/Presentations
Any presentation we've given at FortyNorth Security
SysSec-KAIST/sigover_gen_sample
A tool for SigOver, signal overshadowing attack on the LTE broadcast signals in physical domain.
LeoDJ/Caution-Hot-PCB-Sign
A simple sign made out of PCB material to indicate if a surface is still hot
IBM/tls-vuln-cheatsheet
A quick reference for understanding the nature and severity of vulnerabilities in TLS configurations and implementations.
ztgrace/wlgen
Wordlist generator