poc for CVE-2024-38063 (RCE in tcpip.sys)

Note: I am not responsible for any bad act. This is written by Chirag Artani to demonstrate the vulnerability.

Flutter Mobile Application Reverse Engineering Tool

Mimikatz implementation in pure Python

This Python script checks for the CVE-2024-6387 vulnerability in OpenSSH servers. It supports multiple IP addresses, URLs, CIDR ranges, and ports. The script can also read addresses from a file.

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Automated NoSQL database enumeration and web application exploitation tool.

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)

A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, function hooking or Import Address Table (IAT) modification.

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

Testing tools for Oracle Forms

Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.

Command line tool for dumping Jenkins credentials.

Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles

Penelope Shell Handler

Never ever ever use pixelation as a redaction technique

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

A collaborative, multi-platform, red teaming framework

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

Credentials recovery project

An offensive data enrichment pipeline

The repo contains a series of challenges for learning Frida for Android Exploitation.

DNSChef (NG) - DNS proxy for Penetration Testers and Malware Analysts

Common User Passwords Profiler (CUPP)

A PowerShell tool that takes strong inspiration from CrackMapExec.

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.