A curated list of awesome OSCP resources

The OpenTF Manifesto expresses concern over HashiCorp's switch of the Terraform license from open-source to the Business Source License (BSL) and calls for the tool's return to a truly open-source …

Boost your command line with AI-powered error resolution using OpenAI's Codex. Enjoy a smoother workflow with Fix!

KBOM - Kubernetes Bill of Materials

Docker Image for Metasploit based on Alpine Linux

Tools and Techniques for Red Team / Penetration Testing

OpenAI API + Ruby! 🤖❤️ GPT-5 & Realtime WebRTC compatible!

📚 Freely available programming books

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.

Pentest: Subdomains enumeration tool for penetration testers.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

Runtime Security Enforcement System. Workload hardening/sandboxing and implementing least-permissive policies made easy leveraging LSMs (LSM-BPF, AppArmor).