A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

MCP server for AI agent for cybersecurity: automate assessment of documents, questionnaires & reports. Multi-format parsing, RAG knowledge base,Risks, compliance gaps, remediations.

MAES: M365 Analyzer & Extractor Suite Po

NIST Cybersecurity Framework (CSF) Profile Assessment Tool - Track controls, assign ownership, document findings, score security states, and export for visualization

PowerShell security reporting framework for Microsoft 365 identity posture assessment. Analyzes Authentication Context, PIM, Conditional Access & more.

GitIntel is a robust GitHub OSINT tool crafted to reveal concealed insights from GitHub repositories and user profiles. Its capabilities make it an invaluable resource for ethical hacking, security assessments, and intelligence gathering in the realm of software development.

Rogue.sh is an automated Bash script for Linux systems that performs Nmap scans, sets up Metasploit, exploits vulnerabilities, downloads sensitive files, gathers credentials, and executes post-exploitation tasks, providing a comprehensive overview of a target system's vulnerabilities and security measures.

MottaHunter: Advanced email reconnaissance tool for security professionals. Hunt emails across Google, Twitter, and LinkedIn, validate via SMTP, and generate smart permutations. Features rate limiting, catch-all detection, and permutation splitting for stealth operations.

Cross-platform mobile device analysis framework for Android and iOS security research, penetration testing, and forensic analysis. Python-based toolkit with comprehensive device introspection, vulnerability scanning, and advanced manipulation capabilities.

PowerShell toolkit for assessing DES/RC4 Kerberos encryption in Active Directory. Detects weak encryption across domain controllers, trusts, and event logs. Built for the January 2026 update and July 2026 RC4 removal deadlines.

AWS security assessment platform with AI-powered analysis

Powerful Python SSH brute force tool with multi-threaded architecture, advanced honeypot detection, real-time statistics, and system reconnaissance. Perfect for authorized security testing and penetration testing.

WindowsNinja - Unleash the Power of Windows System Information Gathering! 🖥️🕵️✨ Harness the capabilities of WindowsNinja to silently gather detailed information about your Windows system. Analyze your system's defenses, expose configurations. 🕵️‍♂️💻 Dive into the depths of your Windows environment with WindowsNinja.

AI agent discovery and security assessment platform with vulnerability testing, risk scoring, and compliance mapping

Professional web vulnerability assessment platform with automated XSS and SQL injection detection. Built with Python/Flask featuring real-time scanning dashboard and comprehensive security reporting.

Cosca (Combo Scanner) is an Application Security automation tool that invokes third-party scanners and processes outputs in a one-liner command.

Android KYC & Biometric Security Assessment — authorized methodology to test & harden identity verification (camera, location, sensors, APK integrity). Book, labs, AI agent skills.

Nmap Security Scanner – powerful network scanning tool to detect vulnerabilities, ports, and security issues on your network. 🌐🔍

Guide for conducting security assessments focused on identifying conditions that enable privilege escalation in Linux systems.