RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

Interact with your documents using the power of GPT, 100% privately, no data leaks

Baseline a Windows System against LOLBAS

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Open EDR public repository

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

A fast TCP/UDP tunnel over HTTP

This tool gives information about the phone number that you entered.

Chat over SSH.

Cybersecurity oriented awesome list

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.

Fully working kernel-mode VAC bypass

Spotify's drm(playplay) cryptography functions. cxx/js/python supported

Semi-automatic OSINT framework and package manager

Shredos Disk Eraser 64 bit for all Intel 64 bit processors as well as processors from AMD and other vendors which make compatible 64 bit chips. ShredOS - Secure disk erasure/wipe

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Abusing Intune for Lateral Movement over C2

Rust port of LayeredSyscall, designed to perform indirect syscalls while generating legitimate API call stack frames by abusing Vectored Exception Handling (VEH) to bypass user-land EDR hooks in Wi…

Chocolatey - the package manager for Windows

The 7-Zip derivative intended for the modern Windows experience

Rewrite of the popular wireless network auditor, "wifite" - original by @derv82

Rewrite of the popular wireless network auditor, "wifite"

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Distributed, lock-free, self-hosted health checks and status pages

Better structured concurrency for go

Code AI platform with Code Search & Cody