Stars
A Python pickling decompiler and static analyzer
Prompt Engineering, Generative AI, and LLM Guide by Learn Prompting | Join our discord for the largest Prompt Engineering learning community
A tool for automating cracking methodologies through Hashcat from the TrustedSec team.
A collaborative, multi-platform, red teaming framework
CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications
This class is a broad overview and dive into Exploiting AI and the different attacks that exist, and best practice strategies.
Pipelines: Versatile, UI-Agnostic OpenAI-Compatible Plugin Framework
The Python Risk Identification Tool for generative AI (PyRIT) is an open source framework built to empower security professionals and engineers to proactively identify risks in generative AI systems.
PASSWORDS, NED! IN AN OPEN FIEEEELD!!
ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It provides a set of enumeration tools to identify security vulne…
PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
MailFail identifies and provides commands to exploit a large number of email-related misconfigurations for the current domain and subdomain. The extensions UI popup highlights any misconfigurations…
SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
ScriptSentry finds misconfigured and dangerous logon scripts.
A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.
CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
Zero shot vulnerability discovery using LLMs