Stars
Damn Vulnerable MCP Server
PoC Exploit for the NTLM reflection SMB flaw.
A collection of software installations scripts for Windows systems that allows you to easily setup and maintain a reverse engineering environment on a VM.
CVE-2025-49144 PoC for security researchers to test and try.
Egyscan The Best web vulnerability scanner; it's a multifaceted security powerhouse designed to fortify your web applications against malicious threats. Let's delve into the tasks and functions tha…
DPULSE - Tool for complex approach to domain OSINT
Open-source user intelligence platform. Monitor, analyze, and protect your apps from cyber, insider, and account threats. Get started — free.
PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection rules and undertake various security tasks, all accessible …
A curated list of various bug bounty tools
A self hosted virtual browser that runs in docker and uses WebRTC.
BaldHead is a modular and interactive Active Directory (AD) attack framework built for red teamers and security testers. It automates enumeration and exploitation of AD misconfigurations
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Proof of Concept for CVE-2025-32756 - A critical stack-based buffer overflow vulnerability affecting multiple Fortinet products.
Tools and Techniques for Blue Team / Incident Response
Open source Tines / Splunk SOAR alternative. All-in-one automation platform (workflows, tables, cases) for security and IT teams.
Hermes Secure Email Gateway is a Free Open Source Ubuntu 20.04 LTS Server based Email Gateway that provides Spam, Virus and Malware protection, full in-transit and at-rest email encryption as well …
A powerful and user-friendly browser extension that streamlines investigations for security professionals.
This script is intended to automate your reconnaissance process in an organized fashion
A list of resources for those interested in getting started in bug bounties
In this projects are custom-decoders and custom-rules for Wazuh by me. Feel free to use it, you can redistribute it and/or modify it under the terms of GPLv2. Cybersecurity is hard, so let's work t…
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application