A visual methodology tracking platform tailored for offensive security assessments

TokenCert

Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io

A C# implementation of dumping credentials from Windows Credential Manager

Certified Red Team Professional (CRTP) - Notes

execute PE in memory Filelessly

Recon Subdomain Scan Tool

A FAFO project: Command execution and data exfiltration of any kind through live streaming platforms

Tool to scan servers and hosts using dynamic paths.

dende-rs is a guardian that monitors your logs and payloads to alert you (with Telegram or other sinks) if a regex or string matches or if your payload is published on VirusTotal.

A lightweight, modular Command and Control (C2) framework built for offensive security research and red teaming (Post Exploitation).

The best ransomware simulation for enterprise security

A simple tool to extract saved passwords from Chromium-based browsers and send them to a Discord channel

Rust DLL Search Order Hijacking

S3 Bucket Enumeration Script for Pentesting

RedSnitch creates specially crafted PDFs that capture NTLM hashes, providing red teamers with an efficient and covert way to gather credentials during engagements.

Cobalt Strike 4.x compatible Aggressor Script custom psuedo "tab completion" for on-keyboard Red Team Operator.

PowerBI Extractor is a fully open-source auditing and exploration tool for Microsoft Power BI environments, it performs deep metadata extraction, access control validation, user-role mapping, and optional DAX/report export operations.

🦊 NIGHTFOX is a stealthy Bash-based OSINT reconnaissance tool. Performs WHOIS lookups, DNS scans, passive and brute-force subdomain enumeration with auto-wordlist generation. Made for Red Teamers and Bug Bounty Hunters.

Khyber Pass is a Penetration Testing tool designed to intercept password changes on Linux systems. It effectively filters the passwd command to capture any passwords entered by the user and sends them to a specified Discord Webhook for monitoring purposes.