Stars
Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
Enumerate Microsoft Entra ID (Azure AD) fast
Hyperlight is a lightweight Virtual Machine Manager (VMM) designed to be embedded within applications. It enables safe execution of untrusted code within micro virtual machines with very low latenc…
Painless global state management for React using Hooks and Context API in 1KB!
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
BloodHound with a twist of cloud
Six Degrees of Domain Admin
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Python implementation of select MicroBurst scripts.
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
Shellphish's automated exploitation engine, originally created for the Cyber Grand Challenge.
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
A little tool to play with Windows security
An advanced tool for working with access tokens and Windows security policy.
Set of tools to analyze Windows sandboxes for exposed attack surface.
Manipulating and Abusing Windows Access Tokens.
An index of Windows binaries, including download links for executables such as exe, dll and sys files