A standalone HACS-ready version of my Monzo Home Assistant integration for preview and testing

All-in-one auditing toolkit for identifying common security issues in managed Kubernetes environments. Currently supports Amazon EKS.

Quickly discover exposed hosts on the internet using multiple search engines.

A Mac utility that automatically downloads macOS Firmwares / Installers.

Scripts with leverage Bart Reardon's swiftDialog

Burp Suite Extension useful to verify OAUTHv2 and OpenID security

Fast and configurable TLS grabber focused on TLS based data collection.

Identify privilege escalation paths within and across different clouds

Find security vulnerabilities in open source npm packages while you code

unc0ver jailbreak for iOS 11.0 - 12.4

Easily connect to and switch between, OpenVPN servers hosted by NordVPN on Linux (+patch leakes)

Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

In-depth attack surface mapping and asset discovery

Security Tool to Look For Interesting Files in S3 Buckets

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

Directory/File, DNS and VHost busting tool written in Go

DNS Sub-domain brute forcer, in Python + gevent

Setup script for Regon-ng

Fast subdomains enumeration tool for penetration testers

PowerSploit - A PowerShell Post-Exploitation Framework

🔒 Memorable site for testing clients against bad SSL configs.

Simple PHP script which decodes an SSL connection and displays the information.