JumpServer is an open-source Privileged Access Management (PAM) tool that provides DevOps and IT teams with on-demand and secure access to SSH, RDP, Kubernetes, Database and RemoteApp endpoints thr…

Python 27,739 5,485 Updated May 23, 2025

cisagov / ScubaGear

Automation to assess the state of your M365 tenant against CISA's baselines

PowerShell 2,141 286 Updated May 22, 2025

In3x0rabl3 / OSEP

PEN-300 collection to help you on your exam.

PowerShell 602 149 Updated Feb 23, 2024

xforcered / RemoteMonologue

Forked from 3lp4tr0n/RemoteMonologue

Weaponizing DCOM for NTLM Authentication Coercions

Python 222 16 Updated Apr 7, 2025

boku7 / Loki

🧙‍♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications

JavaScript 1,037 170 Updated May 19, 2025

rustdesk / rustdesk

An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer.

Rust 88,810 12,680 Updated May 23, 2025

pushsecurity / saas-attacks

Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown

1,328 98 Updated Feb 17, 2025

BlackSnufkin / NyxInvoke

NyxInvoke is a Rust CLI tool for running .NET assemblies, PowerShell, and BOFs with Patchless AMSI and ETW bypass features. with Dual-build support

Rust 211 31 Updated Feb 12, 2025

Oni-kuki / RC-Obfuscator

Just an obfuscation technique in a resource file in 2 possible formats

C++ 8 3 Updated Jan 13, 2025

jpmorganchase / python-training

Python training for business analysts and traders

Jupyter Notebook 9,267 1,563 Updated Jul 17, 2024

NetSPI / BOF-PE

An example reference design for a proposed BOF PE

C++ 167 16 Updated Apr 17, 2025

bryanmcnulty / gcp-iam-fuzz

Tool to quickly enumerate IAM permissions for a Google Cloud Platform (GCP) account

Go 7 Updated Mar 16, 2025

hac01 / gcp-iam-brute

Python 47 2 Updated Jun 13, 2024

zh54321 / GraphPreConsentExplorer

A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable with a simple HTML GUI.

HTML 106 7 Updated Mar 26, 2025

BlackSnufkin / LitterBox

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

YARA 864 98 Updated May 22, 2025

Cracked5pider / Stardust

A modern 32/64-bit position independent implant template

C 1,215 194 Updated Mar 21, 2025

icyguider / UAC-BOF-Bonanza

Collection of UAC Bypass Techniques Weaponized as BOFs

C 510 65 Updated Feb 21, 2024

trustedsec / DitExplorer

Tool for viewing NTDS.dit

C# 164 14 Updated Mar 14, 2025

orbitscanner / Bitor

Bitor Scanning Software

Svelte 380 44 Updated May 17, 2025

oh-az / NoArgs

NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into Windows APIs to dynamically manipulate the Windows internals …

C++ 151 24 Updated May 7, 2024

nickvourd / SkyFall-Pack

Your Skyfall Infrastructure Pack

Go 71 14 Updated May 19, 2025

FalconForceTeam / bof-winrm-client

C++ 110 15 Updated Jan 23, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

burnnotice

Achievements

Achievements

Block or report burnnotice

Stars

jamespilgrim / PiTrac

CultCornholio / RedTeamTP

Thunter-HackTeam / EvilentCoerce

ricardojoserf / NativeDump

quarkslab / proxyblob

cogiceo / GPOHound

redr0nin / Serenity

ghostunnel / ghostunnel

jumpserver / jumpserver