A free and instant collaborative diagramming tool.

The Network Execution Tool. Contribute to Pennyw0rth/NetExec development by creating an account on GitHub.

Tools for exploring and testing OAuth and OpenID Connect flows. With this free tool you can learn and explore the inner workings of OpenID Connect and OAuth.

Visual studio code tunnel Introduction Since July 2023, Microsoft is offering the perfect reverse shell, embedded inside Visual Studio Code, a widely used …

Free & Open Source Airtable alternative. Turns any SQL database into a smart spreadsheet. Supports MySQL, Postgres, SQL server, MariaDB & SQLite.

A little tool to play with Windows security. Contribute to gentilkiwi/mimikatz development by creating an account on GitHub.

GitHub Gist: instantly share code, notes, and snippets.

https://www.mandiant.com/resources/blog/commando-vm-windows-offensive-distribution

Chepy is a python lib/cli equivalent of the awesome CyberChef tool. - GitHub - securisec/chepy: Chepy is a python lib/cli equivalent of the awesome CyberChef tool.

Never ever ever use pixelation as a redaction technique - GitHub - BishopFox/unredacter: Never ever ever use pixelation as a redaction technique

Learn to use NetExec

Let’s Go (VS) Code - Red Team style or the Microsoft signed and hosted Reverse Shell TL;DR; MS is offering a signed binary (code.exe), which will establish a Command&Control channel via an official Microsoft domain https://vscode.dev. The C2 communication itself is going to https://global.rel.tunnels.api.visualstudio.com over WebSockets. An attacker only needs an Github account.

🦚 A web-app pentesting suite written in rust . Contribute to pwnwriter/kanha development by creating an account on GitHub.

https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation#unquoted-service-paths

:orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report - GitHub - noraj/OSCP-Exam-Report-Template-Markdown: :orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

The Bi-directional Link Extractor. Contribute to sensepost/BiLE-suite development by creating an account on GitHub.

Record talks to remember the contents later

KnockKnock - Enumerate Valid Users Within Microsoft Teams And OneDrive With Clean Output http://www.kitploit.com/2023/09/knockknock-enumerate-valid-users-within.html

Download MarkDownload - Markdown Web Clipper for Firefox. This extension works like a web clipper, but it downloads articles in a markdown format. Turndown and Readability.js are used as core libraries. It is not guaranteed to work with all websites.

https://docs.freeplane.org/

⚡ Blazing-fast tool to grab screenshots of your domain list right from terminal. - GitHub - pwnwriter/haylxon: ⚡ Blazing-fast tool to grab screenshots of your domain list right from terminal.

https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation/dll-hijacking

The following is an unofficial list of OSCP approved tools that were posted in the PWK/OSCP Prep Discord Server ( https://discord.gg/eG6Nt4x ) and found on the internet. Please note it is by no means…

https://bloodhound.readthedocs.io/en/latest/

A modern, maintained replacement for ls. Contribute to eza-community/eza development by creating an account on GitHub.

Is that printer in your office vulnerable to a pass-back attack? Why Multi-Function Peripheral (MFP) Hacking an important tool in the pen tester's arsenal.