EvilClippy is a cross-platform tool that helps create malicious MS Office documents. It can hide VBA macros, stomp VBA code (via P-Code), and confuse macro analysis tools. It runs on Linux, OSX, and Windows. This tool is useful for penetration testers and red teamers who want to create realistic phishing attacks or test an organization's defenses against malicious Office documents. EvilClippy provides a range of features that make it easy to create sophisticated malicious documents, including the ability to hide VBA macros and confuse macro analysis tools.
A list of useful payloads and bypasses for Web Application Security.
Offensive security tool for reconnaissance and information gathering with a wide range of features and future roadmap.
A collection of scripts for Turbo Intruder, a penetration testing tool
TikiTorch offers advanced process injection capabilities to execute code stealthily in another process's space.
ISF (Industrial Exploitation Framework) - An exploitation framework for industrial systems with various ICS protocol clients and exploit modules.
DueDLLigence is an open-source tool for identifying and analyzing DLL hijacking vulnerabilities in Windows applications, providing automated analysis and remediation guidance.
Open-source Java application for creating proxies for traffic analysis & modification.
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.