Various *nix tools built as statically-linked binaries

XRay is a tool for recon, mapping and OSINT gathering from public networks.

A Tool for Domain Flyovers

st2-048

XSS'OR - Hack with JavaScript.

Find exploits in local and online databases instantly

Easy Machine Learning is a general-purpose dataflow-based system for easing the process of applying machine learning algorithms to real world tasks.

Command line utility for searching and downloading exploits

A portable console aimed at making pentesting with PowerShell a little easier.

Ctf solutions from p4 team

Pentesting checklists for various engagements

machine learning and deep learning tutorials, articles and other resources

Automate getting Domain Admin using Empire (https://github.com/EmpireProject/Empire)

InjectProc - Process Injection Techniques

Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)

A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems.

Brute-Forcing from Nmap output - Automatically attempts default creds on found services.

open source driving agent

Free web-application vulnerability and version scanner

一款开源指纹识别工具。

A curated list of rootkits found on Github and other sites.

😎 A curated list of awesome resources on Compilers, Interpreters and Runtimes.

NagaScan is a distributed passive scanner for Web application.

VBA Reversed TCP Meterpreter Stager

Empire is a PowerShell and Python post-exploitation agent.

security machine learning

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

ics security tools