Free
shad0w
A script to enumerate Google Storage buckets and determine access and privilege escalation
Offensive Security
Offensive security testing uncovers vulnerabilities through simulated attacks.
Try these 279 AI Offensive Security Tools
Free
Shadow Workers
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
Free
SharpEDRChecker
Pwndrop is a self-deployable file hosting service for red teamers, allowing easy upload and sharing of payloads over HTTP and WebDAV.
Free
SharpC2
AzureC2Relay enhances security by validating and relaying Cobalt Strike beacon traffic through Azure Functions.
Free
SharpPrinter
A tool that simplifies the installation of tools and configuration for Kali Linux
Free
SharpShares
A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities
Free
SharpSploit
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
Free
Free
SILENTTRINITY
A comprehensive malware-analysis tool that utilizes external AV scanners to identify malicious elements in binary files.
Free
Free
sixnet-tools
A modern post-exploitation command and control framework with a client-server architecture and extensibility features.
Free
Skyhook
A repository containing material for Android greybox fuzzing with AFL++ Frida mode
Free
Sliver
A guide on basic Linux privilege escalation techniques including enumeration, data analysis, exploit customization, and trial and error.
Free
SmashTheStack Wargaming Network
OWASP OWTF is a penetration testing framework focused on efficiency and alignment with security standards.
Free
SMOD
GNU/Linux Wireless distribution for security testing with XFCE desktop environment.
Free
Social Engineering Attacks
Metta is an information security preparedness tool for adversarial simulation.
Free
Social-Engineer Toolkit (SET)
A practical guide on NTLM relaying for Active Directory attacks.
Free
Splunk Attack Range
Interactive online malware sandbox for real-time analysis and threat intelligence
Free
SSH MITM v2.3-dev
Collection of vulnerable ARM binaries for beginner vulnerability researchers & exploit developers.
Free
Free
SSTImap
An exploration of a new method to abuse DCOM for remote payload execution and lateral movement.