This method utilizes TLS callbacks to execute a payload without spawning any threads in a remote process. This method is inspired by Threadless...
Introduction SiCat is an advanced exploit search tool designed to identify and gather information about exploits from both open sources...
AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE...
Introducing Uscrapper 2.0, A powerfull OSINT webscrapper that allows users to extract various personal information from a website. It leverages...
DllNotificationInection is a POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification...
gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can...
This is a tool I whipped up together quickly to DCSync utilizing ESC1. It is quite slow but otherwise an...
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more...
Python partial implementation of SharpGPOAbuse by@pkb1s This tool can be used when a controlled account can modify an existing GPO...
CloudRecon Finding assets from certificates! Scan the web! Tool presented @DEFCON 31 Install ** You must have CGO enabled, and...
This program is a tool written in Python to recover the pre-shared key of a WPA2 WiFi network without any...
Zero-dollar attack surface management tool featured at Black Hat Arsenal 2023 and Recon Village @ DEF CON 2023. Description Easy...
A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning Features login panel Scanning for multiple hosts...
This is a tool designed for Open Source Intelligence (OSINT) purposes, which helps to gather information about employees of...
Bugsy is a command-line interface (CLI) tool that provides automatic security vulnerability remediation for your code. It is the community...
WebCopilot is an automation tool designed to enumerate subdomains of the target and detect bugs using different open-source tools. The...
A stealth post-exploitation container. Introduction With the raise in popularity of offensive tools based on eBPF, going from credential stealers...
CATSploit is an automated penetration testing tool using Cyber Attack Techniques Scoring (CATS) method that can be used without pentester....
Protected Process Dumper Tool that support obfuscating memory dump and transferring it on remote workstations without dropping it onto the...
Valid8Proxy is a versatile and user-friendly tool designed for fetching, validating, and storing working proxies. Whether you need proxies for...
Demonized Shell is an Advanced Tool for persistence in linux. Install git clone https://github.com/MatheuZSecurity/D3m0n1z3dShell.gitcd D3m0n1z3dShellchmod +x demonizedshell.shsudo ./demonizedshell.sh One-Liner Install...
PhantomCrawler allows users to simulate website interactions through different proxy IP addresses. It leverages Python, requests, and BeautifulSoup to offer...
Overview RansomwareSim is a simulated ransomware application developed for educational and training purposes. It is designed to demonstrate how ransomware...
Have you ever watched a film where a hacker would plug-in, seemingly ordinary, USB drive into a victim's computer and...
