Malware Checker Tool generates an HTML report by comparing Hashes, Ip Addresses and URL Addresses through the VirusTotal database.

A basic emulation of an "RPC Backdoor"

An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities

Email reputation check transform for Maltego

Telegram similar channels search tool (CLI + Maltego)

🕵️‍♂️ Collect a dossier on a person by username from thousands of sites

A simple portscanner for powershell

Powerful asynchronus IPv4 port scanner for PowerShell

List of Awesome Red Teaming Resources

A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or set up with Docker.

Random version of microemacs with my private modificatons

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

Personal offensive cybersecurity notes

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Finding your secret(Credential, API Key, AWS Key, Token, etc.) in your source code, files

NodeJsScan is a static security code scanner for Node.js applications.

Active Directory and Internal Pentest Cheatsheets

Hardware/IOT Pentesting Wiki

Simple script for the WHID injector - a rubberducky wifi

Automatic SSRF fuzzer and exploitation tool

The kernel patch and userspace tools to enable Linux software write blocking

Code for the USB write blocker built on the FTDI VNC2 development board

Bypass Android Do Not Disturb by leveraging the People and Conversations system

Instant, Open source API security → API discovery, automated business logic testing and runtime detection.

Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities

This repository created for personal use and added tools from my latest blog post.

Automated & Manual Wordlists provided by Assetnote

A Chrome DevTools Protocol driver for web automation and scraping.