Stars
Perfect DLL Proxying using forwards with absolute paths.
Tools and Techniques for Red Team / Penetration Testing
Red Teaming and Penetration Testing Checklist, Cheatsheet, Clickscript
List of Awesome Red Teaming Resources
Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a database.
Bypass captive portals by impersonating inactive users
Weaponized Browser-in-the-Middle (BitM) for Penetration Testers
🚨 CVE-2023-45866 - BlueDucky Implementation (Using DuckyScript) 🔓 Unauthenticated Peering Leading to Code Execution (Using HID Keyboard)
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
coffeegist / bofhound
Forked from fortalice/bofhoundGenerate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
🕵️♂️ Collect a dossier on a person by username from thousands of sites
Real-time tracking of Instagram users activities and profile changes
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+Bloc…
A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encry…
Finds Instagram location IDs near a specified latitude and longitude.
Check if phone numbers are connected to Telegram accounts.
holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
Social Media OSINT collection containing - tools, techniques & tradecraft.
OSINT tool for finding profiles by username
Accurately Locate Smartphones using Social Engineering
Improve you Geolocation skills, with this ilist of resources.
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE