#Offensive-security
Showing 60 of 265 repositories tagged #offensive-security, ranked by stars
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
Open-source AI penetration testing tool to find and fix your appโs vulnerabilities.
Fully autonomous AI Agents system capable of performing complex penetration testing tasks
One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password ๐ก๏ธ
Bjorn is a powerful network scanning and offensive security tool for the Raspberry Pi with a 2.13-inch e-Paper HAT. It discovers network targets, identifies open ports, exposed services, and potential vulnerabilities. Bjorn can perform brute force attacks, file stealing, host zombification, and supports custom attack scripts.
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
OSCP Cheat Sheet
A high performance offensive security tool for reconnaissance and vulnerability scanning
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
A curated list of awesome OSCP resources
Automated NoSQL database enumeration and web application exploitation tool.
Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
Fast, multi-protocol credential brute-forcer. Parses Nmap, Nessus, and Nexpose output to automatically test default and custom credentials across 30+ protocols.
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
:new: The Multi-Tool Web Vulnerability Scanner.
Autonomous penetration testing using a swarm of AI agents. Orchestrates recon, classification, exploitation, and reporting specialists with ReAct reasoning โ supports bug bounty, continuous monitoring, and CTF modes. Built with Go, Claude API, and 7+ native security tools.
Turn Claude Code into your offensive security research assistant. Specialized AI subagents for authorized penetration testing plan engagements, analyze recon, research exploits, build detections, audit STIGs, and write reports.
Repository for advanced Red Team techniques focused on Rust
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
A self-hosted sandbox for red teams to test payloads against modern detection before deployment. MCP integration lets an LLM agent drive analysis end to end.
Username tools for penetration testing
ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.
AI-powered offensive security agent with 7,300+ actionable security skills. Autonomous pentesting powered by MITRE ATT&CK (2,000+ Atomic tests), CIS Benchmarks (1,500+ controls), OWASP, NIST. Lazy-loading, zero context pollution. Your AI red team.
A Huge Learning Resources with Labs For Offensive Security Players
C2/post-exploitation framework
Leaked pentesting manuals given to Conti ransomware crooks
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
Lonkero - Wraps around your attack surface. Professional-grade scanner for real penetration testing. Fast. Modular. Rust.
Offensive Security OSCP+, OSEP, OSWP, OSWA, OSWE, OSED, OSMR, OSEE, OSDA, OSIR, OSTH Exam and Lab Reporting / Note-Taking Tool
Feature-rich single-binary file server for red teamers and developers. HTTP/S ยท WebDAV ยท FTP/SFTP ยท SMB ยท LDAP/S ยท NTLM hash capture ยท DNS/SMTP callbacks ยท TLS ยท Auth ยท Share links. A powerful python3 -m http.server replacement.
A curated list of tools officially presented at Black Hat events
My own OSCP guide
Work in progress...
MCP server for AI-driven security pipelines
156 offensive security skills for recon and pentest. Field-validated techniques from 600+ targets across 45+ sectors. Updated with browser fingerprint evasion, anti-bot bypass, hardcoded credential hunting, SCADA/ICS enumeration.
A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.
Autonomous AI pentesting engine performing continuous offensive security across web, cloud, AD and Kubernetes. Uses agentic reasoning, real exploit execution and attack path analysis to deliver proof-based vulnerabilities.
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
๐ฆซ | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
PHP shells that work on Linux OS, macOS, and Windows OS.
swiss army knife for hackers
Work in progress...
Multiplayer pivoting solution
Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Discover new target domains using Content Security Policy
Automated DLL Sideloading Tool With EDR Evasion Capabilities
This repo contains my own Ducky/BadUSB scripts, related PowerShell scripts and other Flipper Zero related stuff.
Work in progress...
A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.
Don't let buffer overflows overflow your mind
network reconnaissance toolkit