OffensiveNotion. Notion as a platform for offensive operations
1.2kwtfbins. WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
173pwst-resources. Resources for Students in the Practical Webapp Security and Testing course
169blue-jupyter. Jupyter Notebooks for the Blue Team
146security-tools. A very opinionated list of security tools
128crux. A proof-of-concept malicious Chrome extension
97venture. Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs
95seclab. Automated security lab provisioning
89rustyneedle. A Rust-based dropper for shellcode payloads.
72quasar. quASAR: ASAR manipulation made easy
40electron-app-tracker. Jupyter Notebook
34bolus. Library for shellcode injection
16jupyter-pancakes. Jupyter demo repository for PancakesCon2020
16lcars-css. LCARS-like styling. LCARS © CBS Studios Inc.
15pwfuzz-rs. Rust-based password mutator for brute force attacks
13hacker-strategies. Oblique Strategies for Hackers
9webshell-entropy. Demonstrating the value of entropy as a detection mechanism for obfuscated webshells.
9entropyscan-rs. Rust-based file entropy scanner for threat hunting
9hacksummer-21. Repo for the 2021 edition of HackSummer
9bluebpf. C
9shell-setup. Repo for automating shell config on new machines
9xllrs. XLL Creation with Rust PoC
8corrodedshadow. Rust PoC for enumerating/deleting Volume Shadow Copies
8jupyter-pcap. Packet capture analysis in Jupyter
6wg-lighthouse-generator. Wireguard Lighthouse Configuration Generator
6nimbuster. Directory brute-forcer written in Nim. Because we neede danother one.
6python-cs. Computer Science lessons using Python
5gitclass. Simple tools for managing student repos
5hs21-files. Scripts/tests for HackSummer 21
3zap-automation. Automating web app scanning in OWASP ZAProxy
3rustdll32. Rust
2schoolcast. Digital signage generator for schools
2periscope. Curriculum Mapping for independent schools based on Understanding by Design
2hsquiz. Framework for quizzes in HackSummer VMs
2KrbRelayUp. KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
2evildn. JavaScript
1Freeze.rs. Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
1joyofhaskell. Exercise solutions for the book _The Joy of Haskell_
1