Send push notifications to your phone or desktop using PUT/POST

PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.

Remove API hooks from a Beacon process.

FULL Augment Code, Claude Code, Cluely, CodeBuddy, Comet, Cursor, Devin AI, Junie, Kiro, Leap.new, Lovable, Manus, NotionAI, Orchids.app, Perplexity, Poke, Qoder, Replit, Same.dev, Trae, Traycer AI…

A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Automating situational awareness for cloud penetration tests.

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office365 users.

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

Modern UI and powerful API for Ansible, Terraform/OpenTofu/Terragrunt, PowerShell and other DevOps tools.

What would happen if we didn't use TCP or UDP?

The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbitrary binaries and scripts using any of our nine supported cl…

Alternative Shellcode Execution Via Callbacks

A mostly-serverless distributed hash cracking platform

The open source coding agent.

A fast serialization and validation library, with builtin support for JSON, MessagePack, YAML, and TOML

🦜🔗 The platform for reliable agents.

Official code repo for the O'Reilly Book - "Hands-On Large Language Models"

Search for all leaked keys/secrets using one regex! bugbounty

Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

Clean and simple starter repo using the T3 Stack along with Expo React Native

A curated list of GPT agents for cybersecurity

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

OSWE, OSEP, OSED, OSEE

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

This project aims to compare and evaluate the telemetry of various EDR products.

Some notes about Hydra for bruteforcing