There are no reviews yet. Be the first to send feedback to the community and the maintainers!
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methodsMangle
Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRsIvy
Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by utilizing programmatical access in the VBA object environment to load, decrypt and execute shellcode.Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUSTGo365
An Office365 User Attack ToolTalon
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.mobile-nuclei-templates
Registry-Recon
Cobalt Strike Aggressor Script that Performs System/AV/EDR ReconDent
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.InsecureShop
An Intentionally designed Vulnerable Android Application built in Kotlin.OSINT_Encyclopedia
Your go-to resource for all things OSINTblemon
Universal BLE Monitoring with Frida (or Objection)Microsoft365_devicePhish
A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flowrest-api-goat
KnockKnock
Enumerate valid users within Microsoft Teams and OneDrive with clean output.rustyIron
rustyIron is a tool that takes advantage of functionality within Ivanti's MobileIron MDM solution to perform single-factor authentication attacks. rustyIron can locate the MobileIron MDM authentication endpoint, validate the authentication strategy of the environment, perform user enumeration, brute-force registration PIN values, and perform single-factor authentication attacks.airCross
airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authentication attacks. airCross can locate AirWatch authentication endpoint, validate the authentication strategy of the environment, collect GroupID authentication values, conduct single-factor authentication, and perform user enumeration, in some instances.CVE-2020-15931
Netwrix Account Lockout Examiner 4.1 Domain Admin Account Credential Disclosure Vulnerabilitynvdsearch
A National Vulnerability Database (NVD) API query toolDATP_Queries
Microsoft Defender ATP Advanced Hunting QueriesYara-Rules
netneedle
Network based steganography based control channels and chat.showSSID
Luhn-Calculator
A very simple Burp extension to make it easier to enumerate credit cards in the Intruder.burp-reset-a-tron
reset-a-tron Burp extensionandroid-ndk-crackme
A simple NDK-based application on which to demonstrate some important attack strategies.burp-IBM-WebSphere-Portlet-Decoder
BurpSuite plugin for decoding IBM WebSphere Portlet Statesburp-java-deserializer
warmap-go
VisualLockPickingWorkstation
The Visual Lock Picking Workstation is a Raspberry Pi enclosure which makes it possible to capture live video from a cutaway lock. It is intended as an instructional device which can be used to display the inner workings of a lock while teaching lock picking.burpshellshock
Shellshock scanner for Apache MOD_CGIazure_runbooks
talus_client
pyautoaws
Simple Python wrapper for Terraform/Ansible to build AWS resourcescheckpassword-.net
HIBP Pwned Passwords API Client for .NET appstalus
Lightning-Action-Editor
azure-api-management-tracing-helper
captcha-solve
checkpassword-java
HIBP Pwned Passwords API client for Java projectsterraform-eks
Terraform/Amazon EKS Deployment Starter ScriptsLove Open Source and this site? Check out how you can help us