Contact Me: contact@rmusser.net
Infosec_Reference. An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
6ktldw_server. tl/dw (Too Long, Didn't Watch): Your Personal Research Multi-Tool - a naive attempt at 'A Young Lady's Illustrated Primer' (Open Source NotebookLM)
1.4kCheatsheets. Penetration Testing/Security Cheatsheets
191hyperdbg. Automatically exported from code.google.com/p/hyperdbg
107tldw_chatbook. Standalone Client for tldw_server; NotebookLM(+more) in your terminal; No tracking/Can run entirely offline
38Go-Go-GadgetGospel. Quick Start/Setup of CI/CD for Offensive/Defensive Purposes
22BloodHound-Investigator. Tool to help researchers and journalists better understand large datasets
6Lets-Transcribe-InfoSec-Cons. Let's transcribe every single defcon talk and make them easily searchable by title, content, or author!
5handbook. The CryptoParty Handbook
5MIS. Python
4literature_review. Survey of program analysis research with a focus on machine code
4SuperProfile.
4GTFOBins.github.io. Curated list of Unix binaries that can be exploited to bypass system security restrictions
3security-checklist. A checklist for staying safe on the internet
3MBE. Course materials for Modern Binary Exploitation by RPISEC
3android_notes. Wiki pages about Android internals
3how-to-secure-anything. How to systematically secure anything: a repository about security engineering
3physical-docs. This is a collection of legal wording and documentation used for physical security assessments. The goal is to hopefully allow this as a template for other companies to use and to protect themselves when conducting physical security assessments.
3assessment-mindset. Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
3AceLdr. Cobalt Strike UDRL for memory scanner evasion.
2bountycatchremix. Python
2Advanced-Process-Injection-Workshop. C++
2DomainPasswordSpray. DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. It will automatically generate a userlist from the domain which excludes accounts that are expired, disabled locked out, or within 1 lockout attempt.
2Dr.-Watson. Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's your very own discovery side kick, the Dr. Watson to your Sherlock!
2architecture_decision_record. Architecture decision record (ADR) examples for software planning, IT leadership, and template documentation
2PowerExfil. A collection of data exfiltration scripts for Red Team assessments.
2Social-Engineering-Payloads. Collection of social engineering payloads
2ProcessHider. Post-exploitation tool for hiding processes from monitoring applications
2evil-winrm. The ultimate WinRM shell for hacking/pentesting
24K-Botnet. A simple and easy to use JS Botnet
2sploit-tools. My own tools for easing the task of pentesting / exploit writing
2AndroidKernelExploitationPlayground. C
2Real-Time-Voice-Cloning. Clone a voice in 5 seconds to generate arbitrary speech in real-time
2AllTheThings. Copy of Subtee's Repository That's Taken Down
2RedTeam-BCS. BCS(北京网络安全大会)2019 红队行动会议重点内容
2Pentesting_Toolkit. 🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
2SharpAttack. A simple wrapper for C# tools
2Windows-10-Exploitation.
2WindowsExploitationResources. Resources for Windows exploit development
2SecureAllTheThings. Secure all the things
2Windows10Exploits. Microsoft » Windows 10 : Security Vulnerabilities
2alerting-detection-strategy-framework. A framework for developing alerting and detection strategies for incident response.
2redteam-plan. Issues to consider when planning a red team exercise.
2DeviceDetector.NET. The Universal Device Detection library will parse any User Agent and detect the browser, operating system, device used (desktop, tablet, mobile, tv, cars, console, etc.), brand and model.
2Misc_Scripts. Dumping
2Pentest-and-Development-Tips. A collection of pentest and development tips
2ActiveReign. A Network Enumeration and Attack Toolset
2ApplicationWhitelistBypassTechniques. A Catalog of Application Whitelisting Bypass Techniques
2404. 404 File not found C2 PoC
2ReconNotes. Just some public notes that can be useful and i want let the world knows.
2tldw_BrowserExtension. Browser Extension to interact with the tldw server
2pyChunkViz. Chunk Visualizer written in python
1YetAnotherWildcardCollection. Goal: Create a comprehensive wildcard collection not focused on NSFW
1Windows-Hacks. Creative and unusual things that can be done with the Windows API.
1Phish-Map. Mapping Phishing Pretexts
1AMSI-ETW-Patch. Patch AMSI and ETW
1Damn-Vulnerable-LLM-App. An application that uses LLM agents and other pieces to perform processing of data, that is damn vulnerable.
1dom-to-semantic-markdown. DOM to Semantic-Markdown for use with LLMs (Python version)
1gguf-mmlu-pro. GGUF based MMLU-Pro benchmark tool
1