SharpSploit is a sophisticated .NET post-exploitation library crafted in C#, offering a wide range of tools and techniques for security researchers and penetration testers to simulate advanced post-exploitation tactics.
FEATURES
ALTERNATIVES
Very vulnerable ARM/ARM64[AARCH64] application with various levels of vulnerabilities for exploitation training.
RTA provides a framework of scripts for blue teams to test detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK.
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
A comprehensive malware-analysis tool that utilizes external AV scanners to identify malicious elements in binary files.
A tool that simplifies the installation of tools and configuration for Kali Linux
Redboto is a collection of scripts for red team operations against the AWS API.
A tool for interacting with the MSBuild API, enabling malicious activities and evading detection.
PINNED

InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.