Stars
HP LaserJet P3015 printers running firmware up to and including version 07.250.2 are vulnerable to path traversal attacks via the PJL (Printer Job Language) protocol.
Fast, small, and fully autonomous AI assistant infrastructure — deploy anywhere, swap anything 🦀
Fully automatic censorship removal for language models
Scan Entra for risk in role assignments and escalation paths
Generate DLL proxy/sideload projects. Automatically parses PE export tables and generates ready-to-compile project for red team engagements.
Orchestrate detonating your MalDev in VMs with different EDRs to see their detection surface.
Project for generating and identifying deceptive LNK files.
From Dork to Download: Automating Google Dorks with Playwright
Build your own Swarm Detection & Response (SDR) platform and OpenClaw security infrastructure with Clawdstrike. Become a cyber industry.
"🐈 nanobot: The Ultra-Lightweight OpenClaw"
A lightweight alternative to Clawdbot / OpenClaw that runs in containers for security. Connects to WhatsApp, has memory, scheduled jobs, and runs directly on Anthropic's Agents SDK
A Rust template for writing Beacon Object Files (BOFs)
Serving payloads only to allowed processes using Windows projected file system feature
Clawdbot/Moltbot/OpenClaw One-click RCE PoC 🦞 (CVE-2026-25253)
Tool designed to detect Logon Scripts that could lead to Lateral Windows Movement
A tool to easily perform GitLab Device Code Phishing on red team engagements
Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack, implemented in C#, C++, Crystal, Python and Rust
Python3 implementation of ADRecon with support for NTLM and Kerberos authentication. Generates individual CSV files and a single XSLX report about your AD domain.
BYOVD hunter to help prioritize windows drivers worth manual analysis
SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.
A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for quick AD enumeration.