HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

A security tool for grabbing screenshots of many web hosts

Zellij, Yazi with Nushell and Lua scripting add a File Tree to Helix (or your prefered editor). An IDE-like experience, in the terminal. With nix as the only dependency.

Build sneaky & malicious LNK files.

Infra Pentest env Manager

Autoswagger by Intruder - detect API auth weaknesses

Offensive Security OSCP+, OSEP, OSWP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA, OSIR, OSTH Exam and Lab Reporting / Note-Taking Tool

Waydroid uses a container-based approach to boot a full Android system on a regular GNU/Linux system like Ubuntu.

Command‑line and Python utility that alerts on command completion, code execution and system monitoring events

A lightweight, powerful CSV editor for macOS, Windows and Linux — with built-in JavaScript macros.

Community-maintained registry for free subdomains — 100% free

A Dockerized Android emulator supporting multiple CPU architectures (x86 and arm64) with native performance and seamless ADB & Scrcpy Web access.

A reverse proxy that provides authentication with Google, Azure, OpenID Connect and many more identity providers.

🪐 Markdown with superpowers: from ideas to papers, presentations, websites, books, and knowledge bases.

📷 Create beautiful images of your source code

A cli tool to proxy and analyze TCP connections.

XSS payloads for exploiting Markdown syntax

A curated list of awesome tools that work within the nu language ecosystem e.g. nushell, scripts, nana, etc.

convert case style of words

PEN-300 collection to help you on your exam.

Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully…

Yet another zip smuggler

Permanently disable EDRs as local admin

An auto-updating list of shodan dorks with info on the amount of results they return!

Script to check Azure Front Door WAF for insecure RemoteAddr variable

A Post-exploitation Toolset for Interacting with the Microsoft Graph API

C2 Agent fully PIC for Mythic with advanced evasion capabilities, dotnet/powershell/shellcode/bof memory executions, lateral moviments, pivot and more.