Take it like a gift

Go shellcode loader that combines multiple evasion techniques.

A runtime mobile application analysis toolkit with a Web GUI.

A library for detecting known secrets across many web frameworks.

Checks and hardens your Windows configuration.

A curated list of bugbounty writeups (Bug type wise).

Find misconfiguration through LDAP to exploit weaknesses with Kerberos.

Rubeus is a toolkit for Kerberos interaction and abuses.

A Fuzzer for OpenRedirect issues.

A light-weight first-stage C2 implant written in Nim.

The global gold standard in vulnerability assessment built for the modern attack surface.

Simplify your life with leak detection in JavaScript, NipeJS streamlines the use of regex, making it.

Accept URLs on stdin, replace all query string values with a user-supplied value.

Offensive PowerShell for red team, penetration testing and offensive security.

CLI & library to search for default credentials among thousands of products/vendors.

Get Active Directory security at 80% in 20% of the time.