OpenVPN road warrior installer for Ubuntu, Debian, AlmaLinux, Rocky Linux, CentOS and Fedora

Attack Surface Management Platform

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Linux privilege escalation auditing tool

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

A temporary email right from your terminal written in POSIX sh

Git All the Payloads! A collection of web attack payloads.

Linux enumeration tool for pentesting and CTFs with verbosity levels

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

A script that you can run in the background!

A collection of snippets of codes and commands to make your life easier!

HiddenVM — Use any desktop OS without leaving a trace.

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileg…

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

AntiVirus Evasion Tool

A curated list of the most common and most interesting robots.txt disallowed directories.

NucleiFuzzer is a robust automation tool designed for efficiently detecting web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enum…

Asset inventory of over 800 public bug bounty programs.

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

Some useful scripts for CobaltStrike

A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Script collection to bypass Network Access Control (NAC, 802.1x)

Terraform + Ansible deployment scripts for an Active Directory lab environment.

Trying to make automated recon for bug bounties

Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been seen before, and redirects them to a benign payload.

Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04

A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.