This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.

Source code for the book "Violent Python" by TJ O'Connor. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

The Python Code Tutorials

Penetration Testing Apps for Android

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Penetration testing utility.

Vagrant VirtualBox environment for conducting an internal network penetration test

Complete Listing and Usage of Tools used for Ethical Hacking

Exploit pack for pentesters and ethical hackers.

A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF

PowerShell scripts for communicating with a remote host.

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

crawlergo-to-xray，可以把0Kee-Team crawlergo爬虫爬取的链接推送给长亭xray分析，xray分析后自动调用webhook接口利用server酱实时推送漏洞预警到微信，让你躺着挖漏洞。支持多线程。

A list of useful security and obvescation tools useful for red and blue teaming activities. A list made possible by the provided references.

A collection of resources and tools designed to provide guidelines for ethical modeling.

Vulnerable Banking Suite

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.

Steganograpy in Python | Hide files or data in Image Files

HaE-Java是基于Java开发的一款burpsuite插件，其支持自定义正则表达式，可扩展性强，并内置九种高亮颜色，可高亮（Highlight）标记敏感请求，并（And）提取（Extract）关键数据，方便后续深度挖掘。代码内部维护了一个简单的缓存池，burp界面响应速度佳。

PHP ransomware that encrypts your files as well as file and directory names.

A typical search engine dork scanner scrapes search engines with dorks that you provide in order to find vulnerable URLs.

Perfect tool to brute force SSH public-key authentication

This work aims at using different machine learning techniques in detecting anomalies (including hardware failures, sabotage and cyber-attacks) in SCADA water infrastructure.

Writeups of Hack The Box machines, Italian and English languages

A ransomware implementation just for educational purpose

This is the OFFICIAL CybernetiX S3C website.