A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

1,071 123 Updated Jul 19, 2024

dreizehnutters / vide

Minimal web server enumeration & attack surface detection tool based on results of nmap.

Shell 38 3 Updated Sep 24, 2024

Pennyw0rth / NetExec

The Network Execution Tool

Python 4,810 574 Updated Oct 15, 2025

GhostPack / Rubeus

Trying to tame the three-headed dog.

C# 4,685 833 Updated Sep 8, 2025

itm4n / PrintSpoofer

Abusing impersonation privileges through the "Printer Bug"

C 2,104 359 Updated Sep 10, 2020

wetw0rk / malicious-wordpress-plugin

Simply generates a wordpress plugin that will grant you a reverse shell once uploaded. I recommend installing Kali Linux, as msfvenom is used to generate the payload.

Python 303 70 Updated Feb 26, 2024

xsudoxx / OSCP

684 160 Updated Jun 19, 2024

opencart / opencart

A free shopping cart system. OpenCart is an open source PHP-based online e-commerce solution.

PHP 7,924 5,004 Updated Oct 16, 2025

Tib3rius / AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Python 5,743 962 Updated May 27, 2025

r0oth3x49 / ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Python 3,728 396 Updated Oct 4, 2025

tomnomnom / httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

Go 3,053 528 Updated Jun 22, 2024

devanshbatham / OpenRedireX

A fuzzer for detecting open redirect vulnerabilities

Python 777 145 Updated Jul 1, 2024

aemkei / jsfuck

Write any JavaScript with 6 Characters: []()!+

JavaScript 8,496 684 Updated Mar 10, 2025

ssl / ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

PHP 2,142 372 Updated Aug 12, 2025

NytroRST / XSSFuzzer

XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.

HTML 140 22 Updated Jan 23, 2019

borjmz / aspx-reverse-shell

Aspx reverse shell

ASP 117 65 Updated Feb 4, 2020

ARPSyndicate / puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

Python 660 30 Updated Jun 29, 2025

ly4k / Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Python 3,181 429 Updated Sep 30, 2025

AlexisAhmed / CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

C 641 153 Updated May 20, 2023

dgtlmoon / changedetection.io

Best and simplest tool for website change detection, web page monitoring, and website change alerts. Perfect for tracking content changes, price drops, restock alerts, and website defacement monito…

Toussaint Louverture justaguywhocodes

Highlights

Lists (13)

awesome-lists

crypto 🪙

css/theming

dapp

dev tools

extensions

gatsby

✨ Inspiration

metaverse

nlp

oss

web3

xstate

Starred repositories

amsi-bypass

redteaming

situational-awareness

pwnbox

oscp-prep

isc2

cissp

Roomba

oscp

Exploit