Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

Scan your code for security misconfiguration, search for passwords and secrets. 🔍

A tool to transform Chromium browsers into a C2 Implant

Redeye is a tool intended to help you manage your data during a pentest operation

GateSentinel 是一个现代化的 C2 (Command and Control) 框架，专为安全研究和渗透测试设计。该项目采用 Go 语言开发服务端，C 语言开发客户端，提供了强大的远程控制和管理功能。

Open-source offensive security platform for conducting phishing campaigns that weaponizes iCalendar automatic event processing.

one-stop resource for all things offensive security.

✉️ HTML Smuggling generator&obfuscator for your Red Team operations

🔒 Modern C2 Platform with Cloudflare Tunnel Integration | WinRM & SSH Remote Management | Real-time Terminal & Remote Desktop | Built with FastAPI & React

NOT for educational purposes: An MCP server for professional penetration testers including STDIO/HTTP/SSE support, nmap, go/dirbuster, nikto, JtR, hashcat, wordlist building, and more.

Protection against HTML smuggling attacks.

Ready to go Phishing Platform

一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api

Logging tool intended for red team usage

Squatm3gator is a complete web solution based on the python tool squatm3, designed to enumerate available domains generated modifying the original domain name through different cybersquatting techniques

Ethical hacking practices used to explore vulnerabilities in smart contracts, in order to enhance security measures against potential threats.

Pretexta is a social engineering simulation lab designed to help security professionals, educators, and organizations understand why social engineering attacks succeed.

Secretly record audio and video with chromium based browsers.

Zero dependency browser extension for handling import of cookies, Microsoft 365 OAuth tokens, and Graph API interactions.

LOLGEN: Living Off The Land Payload Generator