Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Practical Cryptography for Developers: Hashes, MAC, Key Derivation, DHKE, Symmetric and Asymmetric Ciphers, Public Key Cryptosystems, RSA, Elliptic Curves, ECC, secp256k1, ECDH, ECIES, Digital Sign…

Defeating Windows User Account Control

Your Everyday Threat Intelligence

A curated list of tools for incident response

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Pentest Scripts for Apache Vulnerabilities

An IRC based tool for testing the capabilities of a botnet.

Tool orchestrator. Specify targets and run sets of tools against them.

Reflective/DOM XSS scanner built on casperJS

pefile is a Python module to read and work with PE (Portable Executable) files

execute remote cmd with smb like psexec

A C++ Networking Library implementing protocols for HTTP, (Not implemented: FTP, (E)SMTP, IMAP, POP3...)

Framework for Man-In-The-Middle attacks

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

Firmware Analysis Tool

A little toolbox to play with Microsoft Kerberos in C

An offline Wi-Fi Protected Setup brute-force utility

Demo: https://diafygi.github.io/webrtc-ips/

PoC grabbing IP address behind a VPN - Based of https://github.com/diafygi/webrtc-ips, saves all found addresses for anyone who visits with WebRTC

Search drives for documents containing passwords

Malicious HTTP traffic explorer

a collection of useful scripts that for penetration testers

A python based https remote access trojan for penetration testing

Remote Desktop Protocol in Twisted Python