socketz

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

BloodHound.py

A Python based ingestor for BloodHound

connectors

OpenCTI connectors

FeKernShh

FireEye HX / Trellix driver unloader

gophish

Open-Source Phishing Toolkit

impacket

Impacket is a collection of Python classes for working with network protocols.

local-cyberchef

Cyberchef local version with update script in Python

mimikatz

A little tool to play with Windows security

OffensivePipeline

OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.

SharpSploitConsole

UltimateAppLockerByPassList

The goal of this repository is to document the most common techniques to bypass AppLocker.

attack-flow

Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by developing a representation of attack flows, modeling attack flows for a small corpus of incidents, and creating visualization tools to display attack flows.

capa

The FLARE team's open-source tool to identify capabilities in executable files.

capa-rules

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@fireeye.com

commonspeak2

Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists

CVE-2020-0683

CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege

docs

Official repository containing all docs & guides of OVH Group

docs-security

All the security related in gitbook and other formats.

DSInternals

Directory Services Internals (DSInternals) PowerShell Module and Framework

dynamic-application-loader-host-interface

getip

isthisipbad

Python3 Script to Check IP Against Blacklist

pupy3

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C. Python 3 version.

PurpleOps

An open-source self-hosted purple team management web application.

rengine

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with mi

rustlings

:crab: Small exercises to get you used to reading and writing Rust code!

terraform-provider-heroku

Terraform Heroku provider

ufonet

UFONet - Denial of Service Toolkit