cbyt3
Follow
Stars
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Youtube as C2 channel - Control Windows systems uploading QR videos to Youtube
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
100+ open-source clones of popular sites like Airbnb, Amazon, Instagram, Netflix, Tiktok, Spotify, Whatsapp, Youtube etc. See source code, demo links, tech stack, github stars.
Create your own vulnerable by design AWS penetration testing playground
sandbox approach for malware developers and red teamers to test payloads against detection mechanisms before deployment
Website Cloner - Utilizes powerful Go routines to clone websites to your computer within seconds.
Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
🎯 Command Injection Payload List
Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)
Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
A container image that exfiltrates the underlying container runtime to a remote server
A python script that finds endpoints in JavaScript files
🔥 Web-application firewalls (WAFs) from security standpoint.
Script for Kali that adds a bunch of tools and customizes it to be much better
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.
DNS-Discovery is a multithreaded subdomain bruteforcer.
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
Email recon made fast and easy, with a framework to build on
.NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.
Python script to carve shellcode into the EAX register