Payload

PINNED

• 

  Mandos Brief Newsletter

  A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

  0

  Free

  Resources

  Security Education

  Resources

  Training

  Security Information

  Education

  Security Community

  

  Mandos Brief Newsletter

  A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

  0

  Free

  Resources

  Security Education

  Resources

  Training

  +3
• 

  PTJunior

  An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

  0

  Commercial

  Offensive Security

  Ai

  Penetration Testing

  Automation

  Security Testing

  Exploitation

  Reconnaissance

  Reporting

  Security Assessment

  Offensive Security

  Vulnerability Exploitation

  

  PTJunior

  An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

  0

  Commercial

  Offensive Security

  Ai

  Penetration Testing

  Automation

  +7
• 

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  Security Operations

  Cti

  Threat Detection

  Security Monitoring

  Rule Management

  Threat Hunting

  Security Information And Event Management

  

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  0

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  0

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  Security Testing

  

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  +1
• 

  ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  0

  Free

  Malware Analysis

  Java

  Deserialization

  Vulnerability

  Exploit

  Payload

  Security Research

  

  ysoserial

  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

  0

  Free

  Malware Analysis

  Java

  Deserialization

  Vulnerability

  +3
• 

  Kako

  A project providing honeypots for embedded device vulnerabilities with support for AWS integration and JSON output.

  0

  Free

  Honeypots

  Honeypot

  Vulnerability

  Payload

  Simulation

  

  Kako

  A project providing honeypots for embedded device vulnerabilities with support for AWS integration and JSON output.

  0

  Free

  Honeypots

  Honeypot

  Vulnerability

  Payload

  +1
• 

  DDE attack with PowerShell Empire

  Weaponize Word documents with PowerShell Empire using the Microsoft DDE exploit.

  0

  Free

  Offensive Security

  Powershell

  Empire

  Microsoft

  Payload

  Attack Vector

  

  DDE attack with PowerShell Empire

  Weaponize Word documents with PowerShell Empire using the Microsoft DDE exploit.

  0

  Free

  Offensive Security

  Powershell

  Empire

  Microsoft

  +2
• 

  Metasploit Cheat Sheet

  A comprehensive guide to using Metasploit, including searching for modules, specifying exploits and payloads, and using auxiliary modules.

  0

  Free

  Resources

  Penetration Testing

  Metasploit

  Exploit

  Payload

  

  Metasploit Cheat Sheet

  A comprehensive guide to using Metasploit, including searching for modules, specifying exploits and payloads, and using auxiliary modules.

  0

  Free

  Resources

  Penetration Testing

  Metasploit

  Exploit

  +1
• 

  SharpShooter

  A payload creation framework for the retrieval and execution of arbitrary CSharp source code.

  0

  Free

  Malware Analysis

  Appsec

  Csharp

  Dotnet

  Payload

  Payload Creation

  Shellcode

  

  SharpShooter

  A payload creation framework for the retrieval and execution of arbitrary CSharp source code.

  0

  Free

  Malware Analysis

  Appsec

  Csharp

  Dotnet

  +3
• 

  Serving Random Payloads with Apache mod_rewrite

  A tutorial on how to use Apache mod_rewrite to randomly serve payloads in phishing attacks

  0

  Free

  Offensive Security

  Phishing

  Payload

  Command And Control

  Apache

  Mod_rewrite

  Pentest

  

  Serving Random Payloads with Apache mod_rewrite

  A tutorial on how to use Apache mod_rewrite to randomly serve payloads in phishing attacks

  0

  Free

  Offensive Security

  Phishing

  Payload

  Command And Control

  +3