A database for red teaming, penetration testing, and ethical hacking resources
Subscribe to our newsletter for the latest news and updates
GTFOBins is a curated list of Unix binaries to bypass local security restrictions in misconfigured systems, aiding pentesters and researchers.
Gandalf is a prompting skills test by Lakera that challenges users to extract secret information from a large language model.
Ghauri is a cross-platform tool for detecting and exploiting SQL injection flaws, automating the process for security professionals.
Ghidra is a powerful open-source reverse engineering tool developed by the NSA, offering a suite of software analysis features including decompilation and disassembly.
SpecterOps Ghostwriter is a project management and reporting platform designed for security professionals to manage clients, projects, and reports.
Gitleaks detects secrets like passwords, API keys, and tokens in git repositories, files, and standard input.
Gobuster is a tool to brute-force URIs, DNS subdomains, and virtual hostnames, aiding in web application reconnaissance.
GodPotato is a privilege escalation tool for Windows, exploiting DCOM to elevate privileges to NT AUTHORITY\SYSTEM with ImpersonatePrivilege.
Gophish is a powerful open-source phishing toolkit designed to help organizations and security professionals conduct realistic phishing simulations.
GraphQL Cop is a Python utility for running security tests against GraphQL APIs, ideal for CI/CD checks and vulnerability reproduction.
Assess the security of your GraphQL apps: authorization, access control, complexity limits, introspection, DDOS, and injections.
GraphQL Voyager: Visualize any GraphQL API as an interactive graph, aiding in understanding and exploration of its schema and relationships.
