r0t1v's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
ScoutSuite
Multi-Cloud Security Auditing Tool
RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
osint_stuff_tool_collection
A collection of several hundred online tools for OSINT
APT_REPORT
Interesting APT Report Collection And Some Special IOC
C2-Tool-Collection
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
recollapse
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
google-dorks-bug-bounty
A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting
ApacheTomcatScanner
A python script to scan for Apache Tomcat server vulnerabilities.
username-anarchy
Username tools for penetration testing
Amsi-Killer
Lifetime AMSI bypass
PipeViewer
A tool that shows detailed information about named pipes in Windows
EXCELntDonut
Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
awesome-ios-security
A curated list of awesome iOS application security resources.
ios_debugger_challenge
A playground for run-time iOS app inspection
Tiny-PHP-Webshell
several list of simple and obfuscate PHP shell
injectAmsiBypass
Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
threat-INTel
Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).