Stars
Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Set of tools to audit SIP based VoIP Systems
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Standard collection of rules for capa: the tool for enumerating the capabilities of programs
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Gospider - Fast web spider written in Go
A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Automated learning of regexes for DNS discovery
XSS spider - 66/66 wavsep XSS detected
This map lists the essential techniques to bypass anti-virus and EDR
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Tools and Techniques for Red Team / Penetration Testing
AV/EDR evasion via direct system calls.
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
lgandx / Responder
Forked from SpiderLabs/ResponderResponder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…
40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Collection of methodology and test case for various web vulnerabilities.
Fetch all the URLs that the Wayback Machine knows about for a domain