Arsenal is just a quick inventory and launcher for hacking programs

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.

The Token Stealer

An HTTP toolkit for security research.

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

🦄 A curated list of privacy & security-focused software and services

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Awesome list of step by step techniques to achieve Remote Code Execution on various apps!

🐬 A collection of awesome resources for the Flipper Zero device.

An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

A Library of various cybersecurity resources

SOC Interview Questions

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!

A list of public penetration test reports published by several consulting firms and academic security groups.

OFRAK: unpack, modify, and repack binaries.

OCSF Schema

Maryam: Open-source Intelligence(OSINT) Framework

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Quick python utility I wrote to turn HTTP requests from burp suite into Cobalt Strike Malleable C2 profiles

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Compilation of Resources from TCM's Practical Ethical Hacking Udemy Course

A recursive internet scanner for hackers.

Sandman is a NTP based backdoor for red team engagements in hardened networks.

This is a resource factory for anyone looking forward to starting bug hunting and would require guidance as a beginner.

An evolving how-to guide for securing a Linux server.

A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.

Automated Red Team Infrastructure deployement using Docker