Endpoint for Out-of-Band Exfiltration (DNS & HTTP)

WPPConnect is an open source project developed by the JavaScript community with the aim of exporting functions from WhatsApp Web to the node, which can be used to support the creation of any intera…

Collection of Cyber Threat Intelligence sources from the deep and dark web

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

The Simple Agent Development Kit.

A-Instant is an AI-powered text assistant that enhances productivity by enabling quick in-context interactions with AI models directly from any application on your Mac.

Wiki to collect Red Team infrastructure hardening resources

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Technical blog with 100% generated content

Weaponized EvilnoVNC: Scalable and semi-automated MFA-Phishing

LuLu is the free open-source macOS firewall

Hashtopolis - distributed password cracking with Hashcat

Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID securit BA99 y configuration reviews.

Red Team Cheatsheet in constant expansion.

This cheatsheet is built for the Bug Bounty Hunters and penetration testers in order to help them hunt the vulnerabilities from P4 to P1 solely and completely with "BurpSuite".

EvilSelenium is a tool that weaponizes Selenium to attack Chromium based browsers.

Microsoft signed ActiveDirectory PowerShell module

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Compiled Binaries for Ghostpack

😱 A curated list of amazingly awesome OSINT

lterm is a small script built to install a bash hook for full terminal logging.

Red Teaming Tactics and Techniques

Automated & Manual Wordlists provided by Assetnote

BLESuite is a Python package that provides an easier way to test Bluetooth Low Energy (BLE) device

Course materials for Modern Binary Exploitation by RPISEC

Open Coronavirus

🔓😎 A curated list of awesome guides, tools, and other resources related to the security and compromise of locks, safes, and keys.

rdp-sec-check is a Perl script to enumerate security settings of an RDP Service (AKA Terminal Services)

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.