The Network Execution Tool

🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

Metlo is an open-source API security platform.

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps.

⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐

A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highlighting those that contain matches.

Tool for especially scanning nearby devices and execute a given command on its own system while the target device comes in range.

Little Bug Bounty & Hacking Tools⚔️

Generate tens of thousands of subdomain combinations in a matter of seconds

MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.

Nucleimonst3r is a powerful vulnerability scanner that can help Bug Bounty Hunters find low hanging fruit vulnerabilities for known CVEs and exploits but also gather all the technology running behind them for further investigation for a potential target.

Tools & Resources for Cyber Security Operations

Filter and enrich a list of subdomains by level

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

A C# based tool for analysing malicious OneNote documents

DPULSE - Tool for complex approach to domain OSINT

A Bumblebee-inspired Crypter

Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.