ChanJianHao

adPEAS

Powershell tool to automate Active Directory enumeration.

awesome-detection-engineering

Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation of detective controls with the goal of proactively identifying malicious or unauthorized activity before it negatively impacts an individual or an organization.

BlueSpy

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

bkcrack

Crack legacy zip encryption with Biham and Kocher's known plaintext attack.

chisel

A fast TCP/UDP tunnel over HTTP

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Fooocus

Focus on prompting and generating

generative-models

Generative Models by Stability AI

hayabusa

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

impacket

Impacket is a collection of Python classes for working with network protocols.

jan

Jan is an open source alternative to ChatGPT that runs 100% offline on your computer

john

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

mimikatz

A little tool to play with Windows security

MSSqlPwner

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

nucleo-ai

An AI assistant beyond the chat box.

open-webui

User-friendly WebUI for LLMs (Formerly Ollama WebUI)

phpggc

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

prompt-injection-defenses

Every practical and proposed defense against prompt injection.

reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

Rubeus

Trying to tame the three-headed dog.

Seatbelt

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

SharpHound

C# Data Collector for BloodHound

SharpShooter

Payload Generation Framework

trufflehog

Find and verify credentials

unredacter

Never ever ever use pixelation as a redaction technique

VMwareCloak

A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.

WhisperLive

A nearly-live implementation of OpenAI's Whisper.

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.