Stars
Applicative Protocol Multiplexer (e.g. share SSH and HTTPS on the same port)
dddd是一款使用简单的批量信息收集,供应链漏洞探测工具,旨在优化红队工作流,减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标
Codespaces but open-source, client-only and unopinionated: Works with any IDE and lets you use any cloud, kubernetes or just localhost docker.
🕳 bore is a simple CLI tool for making tunnels to localhost
PoC Implementation of a fully dynamic call stack spoofer
A fully open-source headless CMS that supports Markdown and Visual Editing
PP-finder Help you find gadget for prototype pollution exploitation
Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE
The best tool for finding one gadget RCE in libc.so.6
TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
DOM Clobbering Wiki, Browser Testing, and Payload Generation
PoCs and tools for investigation of Windows process execution techniques
OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
Cloud-native search engine for observability. An open-source alternative to Datadog, Elasticsearch, Loki, and Tempo.
Tantivy is a full-text search engine library inspired by Apache Lucene and written in Rust
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
Automated testing to find logic and performance bugs in database systems
Publication-ready NN-architecture schematics.
flask extension for integration with the awesome pydantic package
A reliable exploit + write-up to elevate privileges to root. (Tested on Ubuntu 22.04)
Redeye is a tool intended to help you manage your data during a pentest operation
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
secureCodeBox (SCB) - continuous secure delivery out of the box
Example of how to create a scheduler with an API