JShunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security v…

Various one-off pentesting projects written in Nim. Updates happen on a whim.

This project aims to compare and evaluate the telemetry of various EDR products.

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

AV/EDR Lab environment setup references to help in Malware development

Raw data from Threat Intelligence Reports with keyword search across thousands of reports

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Sublime rules for email attack detection, prevention, and threat hunting.

A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities

Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without relying on event logs

A Python POC for CRED1 over SOCKS5

Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in order to run a full investigation against a customer’s Azur…

Open source templates you can use to bootstrap your security programs

Adversary tradecraft detection, protection, and hunting

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Living Off The Land Drivers

Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Cybersecurity oriented awesome list

Live Feed of C2 servers, tools, and botnets

🐙 Guides, papers, lecture, notebooks and resources for prompt engineering

📱 objection - runtime mobile exploration

Incredibly fast crawler designed for OSINT.

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening

Fuzz 401/403/404 pages for bypasses

Prompt Injections Everywhere

Ask a TGS on behalf of another user without password

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

Respotter is a Responder honeypot! Catch attackers and red teams as soon as they spin up Responder in your environment.