W1ck3dTh1ngs

archey4

:computer: Maintained fork of the original Archey (Linux) system tool

boopkit

Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.

chainsaw

Rapidly Search and Hunt through Windows Event Logs

collector-management-client

A Python script for quickly managing a subset of installed Collectors

CVE-2019-18634

My n-day exploit for CVE-2019-18634 (local privilege escalation)

CVE-2021-1675

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

DeepFaceLive

DevOps-The-Hard-Way-AWS

This repository contains free labs for setting up an entire workflow and DevOps environment from a real-world perspective in AWS

Flipper-IRDB

A collective of different IRs for the Flipper

flipper_zero_amiibo

All Amiibo for Flipper Zero Emulation

jwt_tool

:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens

learn-to-cloud

Learn the fundamentals of cloud computing

MISP

MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)

police-brutality

Repository containing evidence of police brutality during the 2020 George Floyd protests

PortBender

TCP Port Redirection Utility

push-button-wordle-solver

reconftw

Simple script for full recon

Reconnoitre

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

s3-malware-scanner

Uses VirusTotal to scan S3 files in a specified S3 bucket

ShadowSteal

Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation

sigma

Generic Signature Format for SIEM Systems

SKLootMaster

A tool to manage Suicide Kings looting via Trello API.

soc_workflow_app_ce

SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack, and view Saved Searches configured by teammates.

spiderfoot

SpiderFoot, the most complete OSINT collection and reconnaissance tool.

subfinder

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

Sublist3r

Fast subdomains enumeration tool for penetration testers

unleashed-firmware

Flipper Zero Unleashed Firmware

usbrubberducky-payloads

The Official USB Rubber Ducky Payload Repository

VECTR

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

Wordpresscan

WPScan rewritten in Python + some WPSeku ideas