A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

The Moby Project - a collaborative project for the container ecosystem to assemble container-based systems

Open Source realtime backend in 1 file

Package gorilla/mux is a powerful HTTP router and URL matcher for building Go web servers with 🦍

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Workflow Engine for Kubernetes

Open-Source Phishing Toolkit

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Qt binding for Go (Golang) with support for Windows / macOS / Linux / FreeBSD / Android / iOS / Sailfish OS / Raspberry Pi / AsteroidOS / Ubuntu Touch / JavaScript / WebAssembly

Directory/File, DNS and VHost busting tool written in Go

Adversary Emulation Framework

A collection of useful, performant, and threadsafe Go datastructures.

The Havoc Framework.

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

syzkaller is an unsupervised coverage-guided kernel fuzzer

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Golang Secure Coding Practices guide

Cameradar hacks its way into RTSP videosurveillance cameras

Obfuscate Go builds

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features.

OnionScan is a free and open source tool for investigating the Dark Web.

ScareCrow - Payload creation framework designed around EDR bypass.

A tool to perform Kerberos pre-auth bruteforcing

Scan for misconfigured S3 buckets across S3-compatible APIs!

🔥 CHAOS is a free and open-source Remote Administration Tool that allow generate binaries to control remote operating systems.

A tool to abuse Exchange services

The Swiss Army knife for automated Web Application Testing

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@goo…