IMDSPOOF is a cyber deception tool that spoofs an AWS IMDS service. One way that attackers are able to escalate…
Telerecon is a comprehensive OSINT reconnaissance framework for researching, investigating, and scraping Telegram. For example: Input a target username, and…
It stands for "comm and injection exploiter." Commix is a state-of-the-art open-source tool made for penetration testers and other cybersecurity…
Find out how powerful Instagram Location Search is. It's a flexible Python tool that makes it easier to find and…
Active Directory Canaries is a detection primitive for Active Directory enumeration (or recon) techniques. It abuses the concept of DACL…
In the world of cybersecurity, where things change quickly, it's important to do thorough and fast penetration testing. Here comes…
This is a tool used to discover endpoints (and potential parameters) for a given target. It can find them by:…
Osquery queries for Detection & Incident Response, containing 250+ production-ready queries. ODK (osquery-defense-kit) is unique in that the queries are…
Privilege escalation from NT Service to SYSTEM using SeImpersonateToken privilege and MS-RPRN functions. Heavily based Reflective Loader from Install Clone…
PoC for the CVE-2023-49103 Overview This Python script is designed to efficiently process a large list of URLs to check…