a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

A python tool to automate KeePass discovery and secret extraction.

Cybersecurity oriented awesome list

Tool to decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface with path validation and encryption protections.

🔥 Turn entire websites into LLM-ready markdown or structured data. Scrape, crawl and extract with a single API.

Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows

This project is aimed at freely providing technical guides on various hacking topics.

Attack Graph Visualizer and Explorer (Active Directory) ...Who's *really* Domain Admin?

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of t…

Fake Protocol Server

PowerShell framework to assess Azure security

Steganography brute-force utility to uncover hidden data inside files

Brute force AWS bucket finder

Common User Passwords Profiler (CUPP)

Misc dictionaries for directory/file enumeration, username enumeration, password dictionary/bruteforce attacks

List of XSS Vectors/Payloads

Proteus : A JSON based LayoutInflater for Android

A small set of tools to convert packets from capture files to hash files for use with Hashcat or John the Ripper.

Automated Security Testing For REST API's

Local file inclusion exploitation tool

SSRF (Server Side Request Forgery) testing resources

IPFuscator - A tool to automatically generate alternative IP representations

An ADCS honeypot to catch attackers in your internal network.

Instagram Ai Agent 🌸 is built using Node.js and TypeScript 🛠️, designed for seamless job execution 📸. It's lightweight, efficient, and still evolving 🚧—exciting new features coming soon! 🌟

Company Researcher tool helps you instantly understand any company inside out.

A sandbox environment designed for loading, running and profiling a wide range of files, including machine learning models, ELFs, Pickle, Javascript and more

LLM based autonomous agent that conducts deep local and web research on any topic and generates a long report with citations.

Proof-of-concept obfuscation toolkit for C# post-exploitation tools