Stars
Command & Conquer: Remastered Collection
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A User Impersonation tool - via Token or Shellcode injection
Automation for internal Windows Penetrationtest / AD-Security
Cross-platform GUI written in Rust using ADB to debloat non-rooted android devices. Improve your privacy, the security and battery life of your device.
A tool for generating fake code signing certificates or signing real ones
Modified template for the OSCP Exam and Labs. Used during my passing attempt
A Python3 script to decode an encoded VBScript file, often seen with a .vbe file extension
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
SharpSploit is a .NET post-exploitation library written in C#
Scripts I use during pentest engagements.
All the code that we use in our Twitch-Series about Coding our own tools
A curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
A place to collect the different document templates for ROS
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
obs-studio plugin to simulate a directshow webcam
G-code generator for 3D printers (RepRap, Makerbot, Ultimaker etc.)
A (very) simple soundboard server to be run on an HTPC with a web interface
A list of public penetration test reports published by several consulting firms and academic security groups.