Command line interface for testing internet bandwidth using speedtest.net

ZBar is an open source software suite for reading bar codes from various sources, including webcams. As its development stopped in 2012, I took the task of keeping it updated with the V4L2 API. Thi…

This project crawls bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) hourly and dumps them into the bounty-targets-data repo

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

Automatic HTTPS for any Go program: fully-managed TLS certificate issuance and renewal

A Zsh theme

☄🌌️ The minimal, blazing-fast, and infinitely customizable prompt for any shell!

AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intelligent fuzzing, AI-driven analysis, and a marketplace of s…

coverage guided fuzz testing for python

Simple DNS Rebinding Service

GraphQL threat framework used by security professionals to research security gaps in GraphQL implementations

A black-box scanner for HTTP request smuggling vulnerabilities caused by chunk parsing discrepancies.

PoC for the research "Attacks via a New OAuth flow, Authorization Code Injection, and Whether HttpOnly, PKCE, and BFF Can Help"

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

A tool to perform Kerberos pre-auth bruteforcing

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

The new sqlcmd, CLI for SQL Server and Azure SQL (winget install sqlcmd / sqlcmd create mssql / sqlcmd open ads)

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

Library of BOFs to interact with SQL servers

Collection of remote authentication triggers in C#

Trying to tame the three-headed dog.

Elastic Security detection content for Endpoint

Sysmon configuration file template with default high-quality event tracing

Sysmon configuration file template with default high-quality event tracing

PowerShell Obfuscator

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

Privilege Escalation Enumeration Script for Windows