An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

CatSniffer is an original multiprotocol and multiband board for sniffing, communicating, and attacking IoT (Internet of Things) devices using the latest radio IoT protocols. It is a highly portable…

The Havoc Framework

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

Generates millions of keyword-based password mutations in seconds.

A fast TCP/UDP tunnel over HTTP

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

Red Teaming Tactics and Techniques

System for building cross-distribution Linux binaries

The ultimate WinRM shell for hacking/pentesting

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Torrent files for data breaches used in research

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Wordlist, rules and masks from Kaonashi project (RootedCON 2019)

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

A collection of several hundred online tools for OSINT

Monitor linux processes without root permissions

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Common User Passwords Profiler (CUPP)

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat…

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

USB WiFi Adapter Information for Linux

A list of public penetration test reports published by several consulting firms and academic security groups.

This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Internet.

This is the updated script from https://teamrocketist.github.io/2017/08/29/Forensics-Hackit-2017-USB-ducker/

ESP8266 firmware for performing deauthentication attacks, with ease.