Certified Red Team Operator (CRTO) Cheatsheet and Checklist

Custom wordlist, updated regularly

Deprecated - Low Orbit Ion Cannon - An open source network stress tool, written in C#. Based on Praetox's LOIC project. USE ON YOUR OWN RISK. WITHOUT ANY EXPRESS OR IMPLIED WARRANTIES. IF YOU GET V…

Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.14 - Unauthenticated SQL Injection

Hydra wrapper for bruteforcing Microsoft Outlook Web Application.

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)

The ESP32-BlueJammer (Bluetooth jammer, BLE jammer, WiFi jammer, RC jammer) disrupts various devices using an ESP32 and nRF24 modules, causing plenty of noise and sending unnecessary packets (DoS).…

This repo will contain the material for reversing flutter applications.

HTTP(S)/WS(S)/TCP Tunnels to localhost using only SSH.

A godaddy dns plugin using lexicon for cerbot to authenticate and retrieve letsencrypt certificates

An IIS short filename enumeration tool

An example of a spoofing page

My talks and papers

Docker container to use blutter (dart decompiler for android apps)

A Flutter/Dart reverse engineering tool

apk.sh makes reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.

APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is intended primarily for mobile app developers and security teste…

Download multiple Android APK packages from APKPure in parallel

RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.

The new bridge between Burp Suite and Frida!

Portable frida injector for rooted android devices.

A tool to help you intercept encrypted APIs in iOS or Android apps

Binary instrumentation framework based on FRIDA

A tool that helps you work with frida easily for Android platform

This script decodes a SAMLResponse, modifies specified attributes , removes the signature, and re-encodes the altered response. It’s useful for testing vulnerabilities in SAML-based authentication …

Bypass Root Check Pro Modern Xposed API Module (with Java & Native C/C++ Hooks)