Items

Runtime-first Windows thick client assessment tool. Identifies verified privilege escalation paths using Procmon and AccessCheck validation.

Argus is a Python toolkit for streamlined information gathering and reconnaissance, offering a wide range of modules for network and web application assessment.

Arjun is an HTTP parameter discovery suite to find valid web parameters and uncover hidden endpoints.

Astra Security is an AI-powered pentest platform offering continuous vulnerability scanning and management for web apps, APIs, and cloud.

AttackForge is a pentest management and reporting platform that streamlines penetration testing workflows and enhances collaboration across security projects.

AttackerKB is a community-driven database for evaluating exploit utility. It helps red teams prioritize vulnerabilities based on real-world impact.

Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack, implemented in C++ and Python.

AutoRecon is a network reconnaissance tool that automates service enumeration and port scanning for multiple targets.

AzureHound is a BloodHound data collector for Microsoft Azure, enabling security professionals to map attack paths in Azure environments.

BC Security provides cybersecurity assessments and training, offering technical expertise and compliance knowledge for today's business world.

Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups.

Provides browser window templates for Browser In The Browser (BITB) phishing attacks, enabling realistic simulations for social engineering engagements.