Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Repository of yara rules

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

This is a multi-use bash script for Linux systems to audit wireless networks.

Powerful framework for rogue access point attack.

One of a few malware collections on the GitHub.

🎤⌨️ Acoustic keyboard eavesdropping

replaces fish history with a history tailored to pentesters for efficency and newbie pentesters for learning. this is also useful for begginer linux users as i have included descriptions of the fil…

GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or…

Transmission block list

A collection of awesome penetration testing resources, tools and other shiny things

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Comfortably monitor your Internet traffic 🕵️‍♂️

Monitor Network Traffic Per Executable, Beautifully Visualized

Rustcat(rcat) - The modern Port listener and Reverse shell

MVT (Mobile Verification Toolkit) helps with conducting forensics of mobile devices in order to find signs of a potential compromise.

Ghidra is a software reverse engineering (SRE) framework

Since 2011, IPBan is the worlds most trusted, free security software to block hackers and botnets. With both Windows and Linux support, IPBan has your dedicated or cloud server protected. Upgrade t…

Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

Indicators of Compromises (IOC) of our various investigations

Small and highly portable detection tests based on MITRE's ATT&CK.

Message Header Analyzer Add-in For Outlook

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

🛡️ The independent, comprehensive directory of filter and host lists for advertisements, trackers, malware, and annoyances.

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !

Phishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains use…

List of API's for gathering information about phone numbers, addresses, domains etc

Main Sigma Rule Repository