✨ Golang Client Library for Atlassian Cloud.

Golang weaponization for red teamers.

🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends

Extract URLs, paths, secrets, and other interesting bits from JavaScript

Secrets scanner that understands code

small lightweight homelab based on nomad and consul from hashicorp

Proxmox VE Helper-Scripts

Generate a modern Web project with Go and Angular, React, or Vue in seconds 🎲

Harden your Chrome browser via enterprise policy.

⚡ Transfer files over wifi from your computer to your mobile device by scanning a QR code without leaving the terminal.

A collection of hacks and one-off scripts

YubiKey at Datadog

A capture-the-flag exercise based on data analysis challenges

Flamingo captures credentials sprayed across the network by various IT and security products.

A tool to distribute GitHub Action secrets to a list of repositories

Super vulnerable todo list application

Python script for pulling chat history for Slack channels using a stolen API token.

A collection of random bits of information common to many individual penetration tests, red teams, and other assessments

Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities

Adversary Tactics - PowerShell Training

Extracts cookies from Chrome.

Some scripts useful for red team activities

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

Script(s) to assist with the setup of WinDBG & mona.py on a Windows 10 VM

a Damn Vulnerable Serverless Application

Universal Unhooking

SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket

Awesome .NET Security Resources

🤖 Keep your forks up-to-date via automated PRs

Protect your servers with a secret header