Stars
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
cosad3s / badsecrets
Forked from blacklanternsecurity/badsecretsA library for detecting known secrets across many web frameworks
Generates realistic browser fingerprints
The recursive internet scanner for hackers. 🧡
Fast passive subdomain enumeration tool.
In-depth attack surface mapping and asset discovery
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
A Collection of 10.000 collected Windows Chrome Fingerprints. Usable with an easy-to-use API, available as a compressed (lzma) or full-size Json (view Releases). Its just 1.4mb in size in compresse…
Tool for Active Directory Certificate Services enumeration and abuse
An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
Collection of C# projects. Useful for pentesting and redteaming.
List of Awesome Red Teaming Resources
Get file less command execution for lateral movement.
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.