21 posts with this tag
ThreatDeck is a Rust-developed terminal application that aggregates threat intelligence from diverse sources including APIs, RSS/Atom feeds, website scraping, and .onion sites via Tor. It features keyword-based alerting, dashboards with stats and trends, plus screens for feeds, articles, keywords, a
CTF Super Hub is a GitHub-hosted JavaScript project that organizes Capture The Flag challenges and reverse engineering skills for newcomers facing classification struggles across Web, Crypto, Reverse, Pwn, or Misc categories. It provides a unified entry point where users feed problem details to an A
Nutcracker is a Python framework for Android app security analysis and offensive threat intelligence. Security researchers and pentesters use it to input package names or APK URLs, triggering automated decompilation, secret scanning, OSINT, and evasion of protections from vendors like DexGuard and A
AiSOC is an open-source, self-hostable alternative to proprietary Security Operations Center tools, built in Python with an MIT license. It ingests security events from sources like Sysmon, Windows Security logs, M365 audits, Azure sign-ins, CloudTrail, Linux auditd, EDR, DNS, Kubernetes, and more,
EdgeSavedPasswordsDumper is a C# proof-of-concept tool on GitHub with 315 stars that extracts credentials saved via Edge's Autofill, stored in plaintext in the browser's parent process memory. It targets Edge versions up to 147.0.3912.98 and demonstrates heightened risks in multi-user environments l
BlueSAM is a C-based Cobalt Strike BOF that targets the BlueHammer vulnerability to stealthily extract Windows SAM databases. It mimics Windows Defender updates and Volume Shadow Copy Service behavior, allowing red teams to access credentials without triggering typical defenses monitoring Mimikatz o
Bug-Bounty-Agents is a GitHub project with 43 specialized AI agent prompts that transform large language models into dedicated specialists for bug bounty hunting, penetration testing, and red-teaming. Covering engagement phases from reconnaissance and asset discovery to exploit chaining and reportin
hackingtool-plugin is a Python-based wrapper that embeds 183 pentesting and OSINT tools from the Z4nzu/hackingtool repository directly into Claude Code. Developed by AKCodez, it supports local runs on Linux, macOS, or Windows through automatic backend handling with native Bash, WSL, or Docker, ideal
cve-mcp-server equips Claude AI with access to 27 security intelligence tools spanning 21 APIs, including NVD for CVE details, EPSS for exploitation scores, CISA KEV catalog, Shodan for exposure checks, and VirusTotal for malware analysis. Built in Python as a production-grade MCP server, it helps s
Gpt-Agreement-Payment is a Python GitHub project that reverse-engineers and replays the full ChatGPT Team subscription chain, from Stripe to PayPal billing agreements, manual approvals, and Codex OAuth with PKCE. Researchers and protocol analysts supply clean proxies and payment details to output OA