Take it like a gift

personal-security-checklist
personal-security-checklist

A compiled checklist of 300+ tips for protecting digital security and privacy.

localdataHog
localdataHog

String-based secret-searching tool, high entropy and regexes.

MultiDump
MultiDump

Post-exploitation tool for dumping and extracting LSASS memory discreetly.

traitor
traitor

Automatic Linux privilege escalation via exploitation of low-hanging fruit.

Pspy
Pspy

Unprivileged Linux process snooping.

metasploitable
metasploitable

VM that is built from the ground up with a large amount of security vulnerabilities.

lsassy
lsassy

Python tool to remotely extract credentials on a set of hosts.

s3cario
s3cario

Performs buckets checks from a given list of subdomains.

SBOMb
SBOMb

SBOM parser that performs cursory vulnerability assessment.

Mass3
Mass3

Enumerate through a pre-compiled list of AWS S3 buckets using DNS instead of HTTP.

magspoof
magspoof

A portable device that can spoof/emulate any magnetic stripe, credit card or hotel card wirelessly.

Scilla
Scilla

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration.

SecLists
SecLists

Collection of multiple types of lists used during security assessments, collected in one place.

mitm6
mitm6

pwning IPv4 via IPv6.

s3recon
s3recon

Amazon S3 bucket finder and crawler.