Lists (27)
Active Directory
Tools for hacking Active Directory networks113 repositories
Aerospace
Aerospace (hacking) resources2 repositories
Cloud
Repositories related to cloud hacking82 repositories
Command & Control
Command & Control (C2) tools and frameworks41 repositories
Credentials
Tools to work with all sorts of credentials28 repositories
Cryptography
Tools highlighting cryptographic attacks19 repositories
CVE
Proof-of-concept programs associated with Common Vulnerabilities and Exposures (CVE)78 repositories
Evasion
Tools & Resources for evading Antivirus, EDR, IDS, etc.91 repositories
Forensics
Tools for forensic operations / CTFs27 repositories
Hardware
Collection of repositories related to hardware (hacking)50 repositories
IoT
Tools for testing Internet of Things (IoT) devices11 repositories
Linux
Tools related to hacking all things Linux47 repositories
Mobile
Resources related to hacking or reversing mobile devices or mobile apps.11 repositories
Network
Tools for general network hacking188 repositories
Operational Technology
Resources related to (hacking) Operational Technology (OT) systems36 repositories
OSINT
Resources for open source intelligence (OSINT)16 repositories
Other
Unsorted stars / other stuff121 repositories
Pivoting
Tools to pivot through internal networks12 repositories
Post exploitation
Repositories with post-exploitation tooling58 repositories
Privilege Escalation
Resources for privilege escalation, usually on an OS-basis98 repositories
Pwn
Tools for binary exploitation (AKA pwn)9 repositories
Reporting
Tools for writing pentest / red team reports3 repositories
Reversing
All things digital reverse engineering34 repositories
Social Engineering
Repositories that highlight attacks that deal with victim interaction (phishing, general tomfoolery)19 repositories
Web
Tools & resources for hacking web applications103 repositories
Windows
Tools related to (hacking) Microsoft Windows OS341 repositories
Wireless
Wireless hacking (WiFi, Bluetooth, BLE, ...)36 repositories
Starred repositories
Raspberry Pi: development platform for PlatformIO
GCC Cross-compiler chain for Raspberry Pi Pico
Depix is a PoC for a technique to recover plaintext from pixelized screenshots.
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
Use Cloudflare to create HTTP pass-through proxies for unique IP rotation, similar to fireprox
A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
Local Privilege Escalation to Root via Sudo chroot in Linux
Self-developed tools for Lateral Movement/Code Execution
Tool to enumerate privileged Scheduled Tasks on Remote Systems
Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
Lateral Movement Using DCOM and DLL Hijacking
Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
Lateral Movement technique using DCOM and HTA
Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.
From C, Rust or Zig to binary shellcode compiler based on Mingw gcc. It allows using Win32 APIs and standard libraries without any changes to the source code.
Offline, privacy-first grammar checker. Fast, open-source, Rust-powered
Python library to perform fault-injection attacks on microcontrollers
Up-to-date simple useragent faker with real world database