Free
shad0w View shad0w
A script to enumerate Google Storage buckets and determine access and privilege escalation
Offensive Security
Offensive security testing uncovers vulnerabilities through simulated attacks.
Try these 279 AI Offensive Security Tools
Free
Shadow Workers View Shadow Workers
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
Free
SharpEDRChecker View SharpEDRChecker
Pwndrop is a self-deployable file hosting service for red teamers, allowing easy upload and sharing of payloads over HTTP and WebDAV.
Free
SharpC2 View SharpC2
AzureC2Relay enhances security by validating and relaying Cobalt Strike beacon traffic through Azure Functions.
Free
SharpPrinter View SharpPrinter
A tool that simplifies the installation of tools and configuration for Kali Linux
Free
SharpShares View SharpShares
A tool for detecting and exploiting Server-Side Template Injection (SSTI) vulnerabilities
Free
SharpSploit View SharpSploit
A collection of Python scripts for password spraying attacks against Lync/S4B & OWA, featuring Atomizer, Vaporizer, Aerosol, and Spindrift tools.
Free
SigThief View SigThief
Generates randomized C2 profiles for Cobalt Strike to evade detection.
Free
SILENTTRINITY View SILENTTRINITY
A comprehensive malware-analysis tool that utilizes external AV scanners to identify malicious elements in binary files.
Free
Simulator View Simulator
Generates randomized C2 profiles for Cobalt Strike to evade detection.
Free
sixnet-tools View sixnet-tools
A modern post-exploitation command and control framework with a client-server architecture and extensibility features.
Free
Skyhook View Skyhook
A repository containing material for Android greybox fuzzing with AFL++ Frida mode
Free
Sliver View Sliver
A guide on basic Linux privilege escalation techniques including enumeration, data analysis, exploit customization, and trial and error.
Free
SmashTheStack Wargaming Network View SmashTheStack Wargaming Network
OWASP OWTF is a penetration testing framework focused on efficiency and alignment with security standards.
Free
SMOD View SMOD
GNU/Linux Wireless distribution for security testing with XFCE desktop environment.
Free
Social Engineering Attacks View Social Engineering Attacks
Metta is an information security preparedness tool for adversarial simulation.
Free
Social-Engineer Toolkit (SET) View Social-Engineer Toolkit (SET)
A practical guide on NTLM relaying for Active Directory attacks.
Free
SourcePoint View SourcePoint
A tool that scans for accessibility tools backdoors via RDP
Free
Splunk Attack Range View Splunk Attack Range
Interactive online malware sandbox for real-time analysis and threat intelligence
Free
Free
SSH MITM v2.3-dev View SSH MITM v2.3-dev
Collection of vulnerable ARM binaries for beginner vulnerability researchers & exploit developers.
Free
SSRF-Sheriff View SSRF-Sheriff
A front-end JavaScript toolkit for creating DNS rebinding attacks
Free
SSTImap View SSTImap
An exploration of a new method to abuse DCOM for remote payload execution and lateral movement.