C2-Tracker – Live Feed Of C2 Servers, Tools, And Botnets
Free to use IOC feed for various tools/malware. It started out for just C2 tools but has morphed into tracking...
hacking
VectorKernel – PoCs For Kernelmode Rootkit Techniques Research
PoCs for Kernelmode rootkit techniques research or education. Currently focusing on Windows OS. All modules support 64bit OS only. NOTE...
Cookie-Monster – BOF To Steal Browser Cookies & Credentials
Steal browser cookies for edge, chrome and firefox through a BOF or exe! Cookie-Monster will extract the WebKit master key,...
NoArgs – Tool Designed To Dynamically Spoof And Conceal Process Arguments While Staying Undetected
NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking...
Toolkit – The Essential Toolkit For Reversing, Malware Analysis, And Cracking
This tool compilation is carefully crafted with the purpose of being useful both for the beginners and veterans from the...
Frameless-Bitb – A New Approach To Browser In The Browser (BITB) Without The Use Of Iframes, Allowing The Bypass Of Traditional Framebusters Implemented By Login Pages Like Microsoft And The Use With Evilginx
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters...
APKDeepLens – Android Security Insights In Full Spectrum
APKDeepLens is a Python based tool designed to scan Android applications (APK files) for security vulnerabilities. It specifically targets the...
VolWeb – A Centralized And Enhanced Memory Analysis Platform
VolWeb is a digital forensic memory analysis platform that leverages the power of the Volatility 3 framework. It is dedicated...
GDBFuzz – Fuzzing Embedded Systems Using Hardware Breakpoints
This is the companion code for the paper: 'Fuzzing Embedded Systems using Debugger Interfaces'. A preprint of the paper can...
Chiasmodon – An OSINT Tool Designed To Assist In The Process Of Gathering Information About A Target Domain
Chiasmodon is an OSINT (Open Source Intelligence) tool designed to assist in the process of gathering information about a target...
ADOKit – Azure DevOps Services Attack Toolkit
Azure DevOps Services Attack Toolkit - ADOKit is a toolkit that can be used to attack Azure DevOps Services by...
Attackgen – Cybersecurity Incident Response Testing Tool That Leverages The Power Of Large Language Models And The Comprehensive MITRE ATT&CK Framework
AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE...
CloudGrappler – A purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known threat actors in popular cloud environments such as AWS and Azure
Permiso: https://permiso.io Read our release blog: https://permiso.io/blog/cloudgrappler-a-powerful-open-source-threat-detection-tool-for-cloud-environments CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event...
ST Smart Things Sentinel – Advanced Security Tool To Detect Threats Within The Intricate Protocols utilized By IoT Devices
ST Smart Things Sentinel is an advanced security tool engineered specifically to scrutinize and detect threats within the intricate protocols...
RemoteTLSCallbackInjection – Utilizing TLS Callbacks To Execute A Payload Without Spawning Any Threads In A Remote Process
This method utilizes TLS callbacks to execute a payload without spawning any threads in a remote process. This method is inspired by Threadless...
Sicat – The Useful Exploit Finder
Introduction SiCat is an advanced exploit search tool designed to identify and gather information about exploits from both open sources...
Uscrapper – Powerful OSINT Webscraper For Personal Data Collection
Introducing Uscrapper 2.0, A powerfull OSINT webscrapper that allows users to extract various personal information from a website. It leverages...
DllNotificationInjection – A POC Of A New “Threadless” Process Injection Technique That Works By Utilizing The Concept Of DLL Notification Callbacks In Local And Remote Processes
DllNotificationInection is a POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification...
Gssapi-Abuse – A Tool For Enumerating Potential Hosts That Are Open To GSSAPI Abuse Within Active Directory Networks
gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can...
ADCSync – Use ESC1 To Perform A Makeshift DCSync And Dump Hashes
This is a tool I whipped up together quickly to DCSync utilizing ESC1. It is quite slow but otherwise an...
FalconHound – A Blue Team Multi-Tool. It Allows You To Utilize And Enhance The Power Of Blo odHound In A More Automated Fashion
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more...
pyGPOAbuse – Partial Python Implementation Of SharpGPOAbuse
Python partial implementation of SharpGPOAbuse by@pkb1s This tool can be used when a controlled account can modify an existing GPO...
CloudRecon – Finding assets from certificates
CloudRecon Finding assets from certificates! Scan the web! Tool presented @DEFCON 31 Install ** You must have CGO enabled, and...
Pmkidcracker – A Tool To Crack WPA2 Passphrase With PMKID Value Without Clients Or De-Authentication
This program is a tool written in Python to recover the pre-shared key of a WPA2 WiFi network without any...
