PingRAT secretly passes C2 traffic through firewalls using ICMP payloads.

Tools and Techniques for Red Team / Penetration Testing

An open-source modern exploitation framework inspired by Metasploit

Uncover the true IP address of websites safeguarded by Cloudflare & Others

Comparing the free tier offers of the major cloud providers like AWS, Azure, GCP, Oracle etc.

GlobaLeaks is free, open-source whistleblowing software enabling anyone to easily set up and maintain a secure reporting platform.

🤖 The Modern Port Scanner 🤖

Lokinet is an anonymous, decentralized and IP based overlay network for the internet.

VirusTotal Command Line Interface

General-purpose programming language and toolchain for maintaining robust, optimal, and reusable software.

Remote Administration Tool for Windows

Use Instagram location features to track an account

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Best DDoS Attack Script Python3, (Cyber / DDos) Attack With 56 Methods

Directory/File, DNS and VHost busting tool written in Go

A simple remote tool in C#.

hydra

Knock Subdomain Scan

Fluxion is a remake of linset by vk496 with enhanced functionality.

mx-takeover focuses DNS MX records and detects misconfigured MX records.

Adversary Emulation Framework

Information gathering framework for phone numbers

An XSS exploitation command-line interface and payload generator.

CrackerJack / Hashcat Web Interface / Context Information Security

Post-exploitation tool to cover your tracks on a compromised machine (beta)

Drupal enumeration & exploitation tool

Wi-Fi Exploitation Framework

Easy red team phishing with Puppeteer

Leaked pentesting manuals given to Conti ransomware crooks