Merlin
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, allowing for efficient and secure communication between the server and agents. It provides a robust and flexible framework for post-exploitation activities, enabling users to execute commands, upload and download files, and perform other tasks on compromised systems. Merlin's HTTP/2 protocol support ensures efficient and reliable communication, while its Golang implementation provides a lightweight and scalable solution for command and control operations.
FEATURES
ALTERNATIVES
A credit card/magstripe spoofer that can emulate any magnetic stripe or credit card wirelessly.
Alpha release of External C2 framework for Cobalt Strike with enhanced data channels.
A document that helps inform red team planning by contrasting against the very specific red team style described in Red Teams.
A tool for automated security scanning of web applications and manual penetration testing.
A tool for performing hash length extension attacks against multiple hashing algorithms.
ISF (Industrial Exploitation Framework) - An exploitation framework for industrial systems with various ICS protocol clients and exploit modules.
Pacu is an open-source AWS exploitation framework for offensive security testing against cloud environments.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.