MSOLSpray is a password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid,…
A batch-catching, pattern-matching, patch-attacking secret snatcher. GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and…
DNSteal is a fake DNS server that allows you to stealthily extract files from a victim machine through DNS requests.…
The Open Source Security Events Metadata (OSSEM) is a community-led project that focuses primarily on the documentation and standardization of…
AngrgDB use angr inside GDB. Create an angr state from the current debugger state. Install pip install angrgdb echo "python…
This is a second release of SSHPry tool, with multiple features added. Control of target's TTYBuilt-In KeyloggerConsole-Level phishingRecord & Replay…
Inspired by a conversation with Instacart's @nickelser on HackerOne, I've optimized and published Sandcastle – a Python script for AWS…
Tweetshell is an Shell Script to perform multi-threaded brute force attack against Twitter, this script can bypass login limiting and…
Jackdaw is here to collect all information in your domain, store it in a SQL database and show you nice…
Frida-Fuzzer is a experimental fuzzer is meant to be used for API in-memory fuzzing. The design is highly inspired and…