sashka3076

AlanFramework

A C2 post-exploitation framework

all-about-apikey

Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)

awesome-hacking-lists

平常看到好的渗透hacking工具和多领域效率工具的集合

BlackStone

Pentesting Reporting Tool

BotPEASS

Use this bot to monitor new CVEs containing defined keywords and send alerts to Slack and/or Telegram.

CEH-v11-Study-Guide

DDoS-Layer7-bheh

DDoS Tool by Black Hat Ethical Hacking

dnsReaper

dnsReaper - subdomain takeover tool for attackers, bug bounty hunters and the blue team!

docs-2

Linode guides and tutorials.

doenerium

Fully undetected grabber (grabs wallets, passwords, cookies, modifies discord client etc.)

dorks_hunter

Simple Google Dorks search tool

FixMemcrashed

Fix

hakrawler

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

hoaxshell

An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.

jina

Build cross-modal and multimodal applications on the cloud

Nightingale

It's a Docker Environment for pentesting which having all the required tool for VAPT.

ntcrack

Left To My Own Devices - NT hash tools

RedGuard

RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.

RedGuardImage

Redmibook14-EE-hackintosh

BigReyTuraOma for Redmibook 14 EE (intel 10th gen). Only for educational purposes. Open for improvements and suggestions.

s3-buckets-aio-pwn

An AIO Tool to check for Vulnerable Amazon S3 Buckets as part of Bug Bounty, the uniqueness of this tool is that it can take a file full of buckets, and check all of them with various attack scenarios if they are vulnerable

sqlmap_to_unicode_template

Stalker_2

SubDomz

All in One Subdomain Enumeration Tool

TBomb

This is a SMS And Call Bomber For Linux And Termux

Ventoy

A new bootable USB solution.

CCTV-1

Close-Circuit Telegram Vision revolutionizes location tracking with its open-source design and Telegram API integration. Offering precise tracking within 50-100 meters, users can monitor others in real-time for logistics or safety, redefining how we navigate our surroundings

ElasticSearch-Pentesting

ElasticSearch exploit and Pentesting guide for penetration tester

smartrecon

smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter

wifi-password-stealer

steal saved wifi passwords in a computer & ip of target then report them through email.