A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

1,135 131 Updated Jul 19, 2024

dreizehnutters / vide

Minimal web server enumeration & attack surface detection tool based on results of nmap.

Shell 38 3 Updated Sep 24, 2024

Pennyw0rth / NetExec

The Network Execution Tool

Python 5,257 661 Updated Feb 12, 2026

GhostPack / Rubeus

Trying to tame the three-headed dog.

C# 4,876 870 Updated Nov 14, 2025

itm4n / PrintSpoofer

Abusing impersonation privileges through the "Printer Bug"

C 2,174 367 Updated Sep 10, 2020

wetw0rk / malicious-wordpress-plugin

Simply generates a wordpress plugin that will grant you a reverse shell once uploaded. I recommend installing Kali Linux, as msfvenom is used to generate the payload.

Python 308 70 Updated Feb 26, 2024

xsudoxx / OSCP

704 166 Updated Jun 19, 2024

opencart / opencart

A free shopping cart system. OpenCart is an open source PHP-based online e-commerce solution.

PHP 8,041 5,034 Updated Feb 13, 2026

AutoRecon / AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Python 5,894 977 Updated Jan 28, 2026

r0oth3x49 / ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Python 3,906 416 Updated Oct 4, 2025

tomnomnom / httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

Go 3,085 528 Updated Jun 22, 2024

devanshbatham / OpenRedireX

A fuzzer for detecting open redirect vulnerabilities

Python 782 150 Updated Jul 1, 2024

aemkei / jsfuck

Write any JavaScript with 6 Characters: []()!+

JavaScript 8,561 683 Updated Mar 10, 2025

ssl / ezXSS

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

PHP 2,239 377 Updated Jan 8, 2026

NytroRST / XSSFuzzer

XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.

HTML 139 21 Updated Jan 23, 2019

borjmz / aspx-reverse-shell

Aspx reverse shell

ASP 119 65 Updated Feb 4, 2020

ARPSyndicate / puncia

Panthera(P.)uncia - Official CLI utility for Osprey Vision, Subdomain Center & Exploit Observer.

Python 663 29 Updated Jun 29, 2025

ly4k / Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Python 3,385 452 Updated Dec 3, 2025

AlexisAhmed / CVE-2022-0847-DirtyPipe-Exploits

A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.

C 685 162 Updated May 20, 2023

dgtlmoon / changedetection.io

Best and simplest tool for website change detection, web page monitoring, and website change alerts. Perfect for tracking content changes, price drops, restock alerts, and website defacement monito…

Toussaint Louverture justaguywhocodes

Highlights

Lists (13)

awesome-lists

crypto 🪙

css/theming

dapp

dev tools

extensions

gatsby

✨ Inspiration

metaverse

nlp

oss

web3

xstate

Starred repositories

amsi-bypass

redteaming

situational-awareness

pwnbox

oscp-prep

isc2

cissp

Roomba

oscp

Exploit