The use of this Docker image simplifies the process of running an Android emulator within a Docker container

A complete Elastic SIEM rules / exception containers / exceptions terraform provider

Compile frida scripts into injectable libraries or executables that inject themselfs

Network PubSub and Async Message Passing for Humans

Configure AWS SecurityHub Subscriptions and Exceptions using GitOps

Verify Sigstore Gitsign commit signatures

A Browser Extension that removes triggering content from pages

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

TapJacking Attacks Demo

Modular C# framework to exfiltrate loot over secure and trusted channels.

An interactive course to git

A little tool to play with Outlook

C# version of Powermad

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.

Index your Gmail Inbox with Elasticsearch

📝 streaming logs to the browser. Sponsored by https://cloudash.dev

Aggressor Script to Execute Assemblies from Github

Situational Awareness commands implemented using Beacon Object Files

Collection of beacon BOF written to learn windows and cobaltstrike

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

pull decrypted ipa from jailbreak device

Script for easily importing a trusted CA certificate into the iOS Simulator's trust store. This provides application testers the ability to intercept SSL traffic when using the simulator for testing.

Cobalt Strike aggressor scripts

This program is designed to demonstrate various process injection techniques

Automate creating resilient, disposable, secure and agile monitoring infrastructure for Blue Teams.

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and re…