Penelope Shell Handler

Simple hunting script for suspicious M365 OAuth Apps

Adversary Emulation Framework

Get up and running with Llama 3.3, DeepSeek-R1, Phi-4, Gemma 2, and other large language models.

Bitcoin wallet for iOS & Android. Built with React Native

DeepSeek-VL2: Mixture-of-Experts Vision-Language Models for Advanced Multimodal Understanding

MemProcFS

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminating the need for tools like accesschk.exe or other non-native …

Impacket is a collection of Python classes for working with network protocols.

🔍 OSINT tool for searching people's digital footprint and leaked passwords across various social networks, written in Go.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Find, verify, and analyze leaked credentials

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

Fast passive subdomain enumeration tool.

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

A complete iOS modding guide, from stock to jailbroken.

A next-generation crawling and spidering framework.

Navigate the CVE jungle with ease.

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Kali Linux Fixes for Newly Imported VM's

😱 A curated list of amazingly awesome OSINT

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

A command-line utility designed to discover URLs for a given domain in a simple, efficient way. It works by gathering information from a variety of passive sources, meaning it doesn't interact dire…

In-depth attack surface mapping and asset discovery

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities