PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type) allowing cross-task IAM credential theft.

POC tool to abuse windows server failover clusters

An interactive, TLS-capable HTTP intercepting proxy designed for penetration testers and software developers, including a parser for the ACE protocol used in Siri Dictation communications.

OPC UA test and exploitation tools

A tool to automatically redirect all traffic through the TOR and change the IP every 0 to x seconds. And provides a custom MAC address. </>

dls-monitor scan public Data Leak Sites to detect and track ransomware attacks for threat intelligence purposes

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Container runtimes on macOS (and Linux) with minimal setup

🕵️‍♂️ All-in-one OSINT tool for analysing any website

A merge between https://github.com/OneOfEleven/uv-k5-firmware-custom and https://github.com/fagci/uv-k5-firmware-fagci-mod

Enrich your investigations on IPs, Domains etc. with OSINT

Fort Firewall for Windows

Simple tool to configure Windows Filtering Platform (WFP) which can configure network activity on your computer.

This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd LevelUp 0x02 virtual conference

Shell Script to download NRD(Newly Registered Domain) list for free

This repository contains all the supplement material for the book "The art of sub-domain enumeration"

🎨 Diagram as Code for prototyping cloud system architectures

Newly registered Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping

A collection of domain lists obtained from zone-walking TLDs. Updated daily.

The openSquat is an open-source tool for detecting domain look-alikes by searching for newly registered domains that might be impersonating legit domains and brands.

A small python tool to manage printouts in HAM radio emergency exercises

Chiasmodon is an OSINT tool designed to assist in the process of gathering information about a target domain. Its primary functionality revolves around searching for domain-related data, including …

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find de…

HTTP parameter discovery suite.

A small tool that extracts relative URLs from a file.