🕷 A lightning fast multithreaded network scanner framework with modules.

A fully featured backdoor that uses Telegram as a C&C server

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

A Reverse Engineering Tool for py2exe applications.

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

A Python program for generating LaTeX code that will generate a nice looking deck of cards with Dungeons and Dragons 5e spells on them.

My musings with PowerShell

Web and mobile application security training platform

This is a list of Free Software network services and web applications which can be hosted locally. Selfhosting is the process of locally hosting and managing applications instead of renting from Sa…

The next-generation binary analysis platform from UC Santa Barbara's Seclab!

scanner detecting the use of JavaScript libraries with known vulnerabilities

Nishang - PowerShell for penetration testing and offensive security.

WarBerryPi - Tactical Exploitation

Collection of useful PowerShell functions, scripts, snippets and templates

The personal, minimalist, super-fast, database free, bookmarking service - community repo

Automatic SQL injection and database takeover tool

Defeating Windows User Account Control

Some helpful preload libraries for pwning stuff.

SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strin…

A couple of beta stage tools for data exfiltration

Hash files, strings, input streams and network resources in various common algorithms simultaneously

A swiss army knife for pentesting Windows/Active Directory environments

CANBus Triple – The car hacking platform

Guaranteed cracking of M$ Office files using RC4 40-bit encryption

This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

A post-exploitation powershell tool for extracting juicy info from memory.