kube-score: performs static code analysis of your Kubernetes object definitions
kube-score kube-score is a tool that performs static code analysis of your Kubernetes object definitions.
The pentester's Swiss knife
evtx: A Fast parser for the Windows XML Event Log (EVTX) format
EVTX A cross-platform parser for the Windows XML EventLog format Features 🔒 Implemented using 100% safe rust – and works on all platforms supported by rust (that have stdlib). 🚀 Multi-threaded. ✨ Supports XML and JSON outputs,...
pwntools: CTF framework and exploit development library
pwntools – CTF toolkit Pwntools is a CTF framework and exploits the development library. Written in Python, it is designed for rapid prototyping and development and intended to make exploit writing as simple as...
DogeRat: A multifunctional Telegram based Android RAT without port forwarding
DogeRat A multifunctional Telegram-based Android RAT without port forwarding Feature 🔴 Real time 🌐 custom web view 🔔 notification reader 🔔 notification sender (send custom notification that apper on target device with custom click...
tsunami-security-scanner: general purpose network security scanner
Tsunami Tsunami is a general-purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence. Why Tsunami? When security vulnerabilities or misconfigurations are actively exploited by attackers, organizations...
pwndbg: Exploit Development and Reverse Engineering with GDB
pwndbg pwndbg (/poʊndbæg/) is a GDB plug-in that makes debugging with GDB suck less, with a focus on features needed by low-level software developers, hardware hackers, reverse-engineers and exploit developers. Pwndbg has a lot of...
MSSprinkler: A Non-Disruptive Password Spraying Tool for M365
MSSprinkler MSSprinkler is a password-spraying utility for organizations to test their M365 accounts from an external perspective. It employs a ‘low-and-slow’ approach to avoid locking out accounts and provides verbose information related to accounts...
IPBan: Free security software to block hackers and botnets
IPBan Service IPBan is a simple yet powerful solution for Windows and Linux to prevent botnets and hackers from breaching your computers. Protecting your security is the primary goal, but there are also performance...
gitleaks: Searches full repo history for secrets and keys
gitleaks – Check git repos for secrets and keys Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of its core...
Ntoseye: Windows kernel debugger for Linux hosts running Windows under KVM/QEMU
Ntoseye Windows kernel debugger for Linux hosts running Windows under KVM/QEMU. Features Command line interface WinDbg style commands Kernel debugging PDB fetching Breakpointing Scripting API (Lua) Supported Windows ntoseye currently only supports Windows 10...
getaltname: Extract subdomains from SSL certificates in HTTPS sites
GetAltName GetAltName (or GAN) is a tool that can extract Subject Alternative Names found in SSL Certificates directly from HTTPS websites which can provide you with DNS names (subdomains) or virtual servers. This code extracts subdomain names from https sites...
TLS-Attacker: Java-based framework for analyzing TLS libraries
TLS Attacker TLS-Attacker is a Java-based framework for analyzing TLS libraries. It can send arbitrary protocol messages in an arbitrary order to the TLS peer, and define their modifications using a provided interface. This...
Segugio: Tracking Malware from Click to Configuration
Segugio Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extracting the malware’s final stage configuration. Segugio was created to address the need for...
msldap: LDAP library for auditing MS AD
msldap LDAP library for auditing MS AD Feature Comes with a built-in console LDAP client All parameters can be controlled via a convenient URL Supports integrated windows authentication (SSPI) both with NTLM and...
sn0int: OSINT framework and package manager
sn0int sn0int is an OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. It is an enumerating attack...
NyxInvoke: The Rust-Based Tool Bypassing AMSI & ETW
NyxInvoke NyxInvoke is a versatile Rust-based tool designed for executing .NET assemblies, PowerShell commands/scripts, and Beacon Object Files (BOFs) with built-in patchless AMSI and ETW bypass capabilities. It can be compiled as either a...
