In the realm of cybersecurity, the relentless battle between attackers and defenders rages on. Enter EchoDrv, a potent tool that…
Ghost is a light RAT that gives the server/attacker full remote access to the user's command-line interpreter (cmd.exe). They are allowed to execute…
LOLSpoof is a an interactive shell program that automatically spoof the command line arguments of the spawned process. Just call…
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more…
Introducing Uscrapper 2.0, A powerfull OSINT webscrapper that allows users to extract various personal information from a website. It leverages…
gssapi-abuse was released as part of my DEF CON 31 talk. A full write up on the abuse vector can…
DllNotificationInection is a POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification…
Discover 'httpAlive,' a powerful URL analysis tool designed for web application penetration testing. With features like user-agent rotation, multithreading, and…
PwnDoc is a pentest reporting application making it simple and easy to write your findings and generate a customizable Docx…
This tool performs various checks via headers, path normalization, verbs, etc. to attempt to bypass ACL's or URL validation. It…