Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

1,263 89 Updated Feb 17, 2025

hackersthan / grepsubsfromwebpages

Grep subdomains from web pages.

JavaScript 41 7 Updated Feb 10, 2025

ctf-wiki / ctf-wiki

Come and join us, we need you!

Python 8,533 1,390 Updated Feb 28, 2025

RPISEC / MBE

Course materials for Modern Binary Exploitation by RPISEC

C 5,611 893 Updated Dec 9, 2021

ReanSchwarzer9029 / CAPEv2-KVM-Docker

CAPEv2-KVM-Docker is a straightforward guide for setting up KVM and CAPEv2. I do not claim credit for CAPEv2 - this repository simply provides setup instructions.

Shell 1 1 Updated Feb 19, 2025

googleprojectzero / winafl

A fork of AFL for fuzzing Windows binaries

C 2,397 538 Updated Dec 12, 2024

hhhuang / CAG

Cache-Augmented Generation: A Simple, Efficient Alternative to RAG

Python 1,069 158 Updated Feb 16, 2025

PacktPublishing / Malware-Development-for-Ethical-Hackers

Malware Development for Ethical Hackers, published by Packt

C 290 54 Updated Nov 30, 2024

h3ll0clar1c3 / CRTO

Certified Red Team Operator

HTML 373 115 Updated Apr 17, 2022

PortSwigger / turbo-intruder

Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

Kotlin 1,570 221 Updated Feb 24, 2025

TrashDono / MegaMedusa

MegaMedusa is DDoS tool using `NodeJS` language. MegaMedusa DDoS Machine provided by RipperSec Team.

Python 157 54 Updated Mar 2, 2025

browser-use / web-ui

Run AI Agent in your browser.

Python 8,638 1,425 Updated Feb 20, 2025

guardrailsio / awesome-php-security

Awesome PHP Security Resources 🕶🐘🔐

980 89 Updated Sep 14, 2023

hehacksdark / AdamsRecon

AdamsScan is an automated subdomain enumeration script that utilizes multiple popular tools and APIs like Sublist3r, Amass, Subfinder, crt.sh, findomain and TheHarvester. It helps security research…

Python 22 4 Updated Mar 3, 2025

rsmudge / Malleable-C2-Profiles

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Coba…

1,515 421 Updated May 18, 2021

zer0yu / Awesome-CobaltStrike

List of Awesome CobaltStrike Resources

4,094 741 Updated Sep 20, 2023

sergey-pronin / Awesome-Vulnerability-Research

🦄 A curated list of the awesome resources about the Vulnerability Research

1,173 160 Updated Dec 7, 2020

ail-project / ail-framework

AIL framework - Analysis Information Leak framework

Python 696 96 Updated Mar 5, 2025

LOTTunnels / LOTTunnels.github.io

HTML 88 6 Updated Feb 17, 2025

Security-Onion-Solutions / securityonion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

Shell 3,565 537 Updated Mar 7, 2025

sullo / nikto

Nikto web server scanner

Perl 8,994 1,288 Updated Feb 22, 2025

OWASP / wstg

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Dockerfile 7,722 1,391 Updated Feb 24, 2025

thatsn0tmysite / tget

A (fast) Tor file downloader

Go 5 1 Updated Jan 21, 2025

sojubear sojubear

Lists (9)

Dark Web

General Blue

ML / AI

Offensive Security

Technical Threat Intel

Telegram Scraping

Threat Hunting

Threat Intel

Web Scraping

Stars