Exploit tool for CVE-2023-4911, targeting the 'Looney Tunables' glibc vulnerability in various Linux distributions. LooneyPwner is a proof-of-concept (PoC) exploit...
" dir="auto"><script type="text/javascript" src="MailChecker/platform/javascript/MailChecker.js"></script><script type="text/javascript">if(!MailChecker.isValid('[email protected]')){ console.error('O RLY !');}if(!MailChecker.isValid('myemail.com')){ console.error('O RLY !');}</script> PHP include __DIR__."/MailChecker/platform/php/MailChecker.php";if(!MailChecker::isValid('[email protected]')){ die('O RLY !');}if(!MailChecker::isValid('myemail.com')){ die('O RLY !');}...
Arsenal is just a quick inventory, reminder and launcher for pentest commands. This project written by pentesters for pentesters simplify...
Web Path Finder is a Python program that provides information about a website. It retrieves various details such as page...
Puncia utilizes two of our intelligent APIs - Subdomain Center & Exploit Observer, to gather the results. Please note that...
Facad1ng is an open-source URL masking tool designed to help you Hide Phishing URLs and make them look legit using...
GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments....
Commander is a command and control framework (C2) written in Python, Flask and SQLite. It comes with two agents written in...
SecuSphere is a comprehensive DevSecOps platform designed to streamline and enhance your organization's security posture throughout the software development life...
ILSpy is the open-source .NET assembly browser and decompiler. Decompiler Frontends Aside from the WPF UI ILSpy (downloadable via Releases,...
This is a GCP resource scanner that can help determine what level of access certain credentials possess on GCP. The...
JSpector is a Burp Suite extension that passively crawls JavaScript files and automatically creates issues with URLs, endpoints and dangerous...
HBSQLI is an automated command-line tool for performing Header Based Blind SQL injection attacks on web applications. It automates the...
This is an alpha release of an assemblies.blob AssemblyStore parser written in Python. The tool is capable of unpack and...
(Currently) Fully Undetected same-process native/.NET assembly shellcode injector based on RecycledGate by thefLink, which is also based on HellsGate +...
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records....
Sirius is the first truly open-source general purpose vulnerability scanner. Today, the information security community remains the best and most...
Daksh SCRA (Source Code Review Assist) tool is built to enhance the efficiency of the source code review process, providing...
Attaches to Chrome using its Remote DevTools protocol and steals/injects/clears/deletes cookies. Heavily inspired by WhiteChocolateMacademiaNut. Cookies are dumped as JSON...
Escalate Service Account To LocalSystem via Kerberos. Traditional Potatoes Friends familiar with the "Potato" series of privilege escalation should know...
Caracal is a static analyzer tool over the SIERRA representation for Starknet smart contracts. Features Detectors to detect vulnerable Cairo...
Dissect is a digital forensics & incident response framework and toolset that allows you to quickly access and analyse forensic...
ModuleShifting is stealthier variation of Module Stomping and Module overloading injection technique. It is actually implemented in Python ctypes so...
Nodesub is a command-line tool for finding subdomains in bug bounty programs. It supports various subdomain enumeration techniques and provides...
