Offensive Security

CobaltBus integrates Cobalt Strike with Azure Service Bus to create covert C2 communication channels for red team operations.

A complete suite of tools for assessing WiFi network security with capabilities for monitoring, attacking, testing, and cracking.

A platform to learn SQL injection techniques and methods

ROPgadget is a cross-platform command-line tool that searches for ROP gadgets in binary files across multiple architectures to facilitate exploit development and ROP chain construction.

A debugger tool for reverse engineers, crackers, and security analysts, with a user-friendly debugging UI and custom agent support.

Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.

A post-exploitation framework designed to operate covertly on heavily monitored environments.

Advanced email reconnaissance tool leveraging public data.

Anti-forensics tool for Red Teamers to erase footprints and test incident response capabilities.

Simple C++ Encryption and Steganography tool for hiding files inside images using LSB encoding.

Ebowla is a tool for generating payloads in Python, GO, and PowerShell with support for Reflective DLLs.

Documentation of an AWS IAM privilege escalation technique that exploits the iam:CreatePolicyVersion permission to gain elevated access through policy manipulation.

MITRE Caldera™ is an automated adversary emulation platform built on the MITRE ATT&CK framework that supports red team operations and incident response activities through a modular C2 server and plugin architecture.

Mortar is an evasion technique to defeat and divert detection and prevention of security products, including AV, EDR, and XDR solutions.

A reconnaissance tool that analyzes expired domains for categorization, reputation, and Archive.org history to identify candidates suitable for phishing and C2 operations.

RedGuard is a C2 front flow control tool that helps evade detection by security systems through traffic filtering and redirection capabilities.

A framework for creating XNU based rootkits for OS X and iOS security research

A comprehensive .NET post-exploitation library designed for advanced security testing.

Research project on bypassing default Falco ruleset with Dockerfile for sshayb/fuber:latest image.

RedWarden is a Cobalt Strike C2 reverse proxy that uses packet inspection and malleable profile correlation to evade detection by security controls during red team operations.

Smart traffic sniffing tool for penetration testers

A deliberately vulnerable web application containing DOM-based XSS, CSRF, and other web vulnerabilities for security testing and educational purposes.

A toolkit to attack Office365, including tools for password spraying, password cracking, token manipulation, and exploiting vulnerabilities in Office365 APIs and services.

A comprehensive collection of wordlists for bruteforcing and password cracking, covering various hashing algorithms and sizes.