PurplePanda is a tool that fetches resources from different cloud/saas applications focusing on permissions in order to identify privilege escalation paths…
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the…
WMEye is an experimental tool that was developed when exploring about Windows WMI. The tool is developed for performing Lateral…
Lnkbomb is used for uploading malicious shortcut files to insecure file shares. The vulnerability exists due to Windows looking for…
Patching assembly code to change the behavior of an existing program is not uncommon in malware analysis, software reverse engineering,…
Tencent Cloud Code Analysis (TCA for short, code-named CodeDog inside the company early) is a comprehensive platform for code analysis…
GoodHound came about because I had a need to perform a repeatable assessment of attack paths using Bloodhound.I found that…
Domain Alerting is a daily alert when a new domain name is registered and contains your keywords. Domain Alerting tool…
Dome is a fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for…
CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These…