Whispers is a static code analysis tool designed for parsing various common data formats in search of hardcoded credentials and…
UDP-Hunter is a UDP Scanning has always been a slow and painful exercise, and if you add IPv6 on top…
ThreatBox is a standard and controlled Linux based attack platform. I've used a version of this for years. It started…
ThreadBoat is a Program uses Thread Hijacking to Inject Native Shellcode into a Standard Win32 Application. About I developed this…
Stacs is a YARA powered static credential scanner which supports binary file formats, analysis of nested archives, composable rulesets and ignore lists,…
SillyRAT is a cross platform RAT written in pure Python. The RAT accept commands alongside arguments to either perform as…
Registry-Recon is a Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon. Description As a red-team practitioner, we are often using…
pwnSpoof (from Punk Security) generates realistic spoofed log files for common web servers with customizable attack scenarios. Every log bundle is…
Nosferatu is a Lsass NTLM Authentication Backdoor How It Works First, the DLL is injected into the lsass.exe process, and will begin…
Kubernetes-Goat is designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security. Setting Up Kubernetes Goat…