Stars
Learn how to design large-scale systems. Prep for the system design interview. Includes Anki flashcards.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
🔪 Scan memory for secrets and more. Maybe eventually a full /proc toolkit.
darkPulse是一个用go编写的shellcode Packer,用于生成各种各样的shellcode loader,免杀火绒,360核晶等国内常见杀软。
Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…
An enterprise friendly way of detecting and preventing secrets in code.
一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
A collection of manifests that will create pods with elevated privileges.
Compile-time, Usermode + Kernelmode, safe and lightweight string crypter library for C++11+
BOF to steal browser cookies & credentials
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
LuLu is the free open-source macOS firewall
🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust
Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security