Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Prevents you from committing secrets and credentials into git repositories

 Swiss Army Knife for macOS

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Attack Surface Management Platform

Scripted Local Linux Enumeration & Privilege Escalation Checks

An awesome & curated list of best LLMOps tools for developers

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

ipsets dynamically updated with firehol's update-ipsets.sh script

An ArchLinux based distribution for penetration testers and security researchers.

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileg…

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

This script is intended to automate your reconnaissance process in an organized fashion

Linux Malware Detection (LMD)

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

A open contribute bootcamp to develop DevSecOps skills...

Automatically Launch Google Hacking Queries Against A Target Domain

The CryptoParty Handbook

A Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.

Fast and easy create backdoor office exploitation using module metasploit packet , Microsoft Office , Open Office , Macro attack , Buffer Overflow

Swift binary that will change a local administrator password to a random generated password. Similar behavior to LAPS for Windows

Easy 802.1Q VLAN Hopping

AutoSUID application is the Open-Source project, the main idea of which is to automate harvesting the SUID executable files and to find a way for further escalating the privileges.

Scans for accessibility tools backdoors via RDP

Dockerfile to build a PXE server in a Docker container

Metasploit AV Evasion Tool

Mainframe security auditing and scripts

🔥 Scripts used to augment the penetration testing process of Drupal web applications.

Detects Cisco DTP modes for VLAN Hopping (passive detection)

Data Exfiltration and Command Execution via AAAA Records