Scan GitHub for available OpenAI API Keys

Script to Automate installtion of Apps ,frida server and moving Burpsuite certificate to root folder

Zero shot vulnerability discovery using LLMs

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection

This is the official repository for the code used in the paper: "What Was Your Prompt? A Remote Keylogging Attack on AI Assistants", USENIX Security 24'

Zero-dollar attack surface management tool

CT Log Scanner

WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find entry points to the organization data.

This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Obsidian

Halberd : Multi-Cloud Agentic Attack Tool

Browser extension that extracts users from LinkedIn company pages

Authenticated Remote Command Execution in Gitlab via GitHub import

Content-Type Research

OSINT tools and more but without API key

Thirteen Years of Tor Attacks

boostsecurityio/poutine

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

Nameless C2 - A C2 with all its components written in Rust

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Create an open source toy dataset for finetuning LLMs with reasoning abilities

Parseltongue is a powerful prompt hacking tool/browser extension for real-time tokenization visualization and seamless text conversion, supporting formats like binary, base64, leetspeak, special ch…

Abusing impersonation privileges through the "Printer Bug"

Rust for malware Development is a repository for advanced Red Team techniques and offensive malwares & Ransomwares, focused on Rust 🦀

RAGFlow is a leading open-source Retrieval-Augmented Generation (RAG) engine that fuses cutting-edge RAG with Agent capabilities to create a superior context layer for LLMs

General research for Dreadnode

A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.