An Awesome List of Log4Shell resources to help you stay informed and secure
https://github.com/snyk-labs/awesome-log4shell

parsing RMI and LDAP protocol implementation
https://github.com/EmYiQing/JNDIScan

Log4Shell RCE Exploit fully independent exploit does not require any 3rd party binaries
https://github.com/cyberstruggle/L4sh

Log4j Scanner coded in Powershell
https://github.com/Maelstromage/Log4jSherlock

open detection and scanning tool for discovering and fuzzing for Log4J RCE
https://github.com/TaroballzChen/CVE-2021-44228-log4jVulnScanner-metasploit

CVE-2021-22005 vulnerability which exists in the analysis service of vCenter Server
https://github.com/shmilylty/cve-2021-22005-exp

Windows Common Log File System Driver poc
https://github.com/KaLendsi/CVE-2021-43224-POC

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
https://github.com/0xsp-SRD/mortar

This program is designed to demonstrate various process injection techniques
https://github.com/3xpl01tc0d3r/ProcessInjection

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device
https://github.com/EntySec/ghost

linux post-exploitation framework made by linux user
https://github.com/jm33-m0/emp3r0r

Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD)
https://github.com/MarkoH17/Spray365

AD_Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with kerberos
https://github.com/SecuProject/ADenum

Android Reverse-Engineering Workbench for VS Code
https://github.com/APKLab/APKLab

Scanning APK file for URIs, endpoints & secrets
https://github.com/dwisiswant0/apkleaks

Overlord provides a python-based console CLI which is used to build Red Teaming infrastructure in an automated way
https://github.com/qsecure-labs/overlord

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning
https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner

a recon tool that allows searching on URLs that are exposed via shortener services
https://github.com/utkusen/urlhunter

This tool is design to find admin panel of any website by using custom wordlist or default wordlist easily and allow you to find admin panel trough a proxy server
https://github.com/alienwhatever/Admin-Scanner

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
https://github.com/helich0pper/Karkinos

simplify penetration testing of networks and to create a swiss army knife that is made for running on Windows
https://github.com/cube0x0/SharpMapExec

This tool is used to solve scenarios such as Fastjson, log4j2, native JNDI injection and other scenarios
https://github.com/exp1orer/JNDI-Inject-Exploit

A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE vulnerability
https://github.com/0xInfection/LogMePwn

Gosint is a distributed asset information collection and vulnerability scanning platform
https://github.com/1in9e/gosint

VPN Overall Reconnaissance
Testing Enumeration and Exploitation Toolkit
https://github.com/klezVirus/vortex

This repository provides a scanning solution for the log4j Remote Code Execution
https://github.com/cisagov/log4j-scanner

A log4j vulnerability filesystem scanner
and go package for analyzing jar files
https://github.com/google/log4jscanner

collection of Windows CVE
as well a collection of payloads
https://github.com/forrest-orr/Exploits

 collection of reverse engineered Apple formats, protocols, or other interesting bits
https://github.com/hack-different/apple-knowledge

A collection of awesome software, libraries, learning tutorials, documents and books, technical resources and cool stuff about #Red_Team in #Cybersecurity
https://github.com/paulveillard/cybersecurity-red-team

Android Developer Roadmap 2022 suggests learning paths to understanding Android development
https://github.com/skydoves/android-developer-roadmap

Retos semanales de la comunidad MoureDev para practicar Kotlin & Android
https://github.com/mouredev/Weekly-Challenge-2022-Kotlin

#HackLog4j-Eternal Dragon
_ Log4j basic knowledge
_ Log4j framework recognition
_ Log4j vulnerability summary
_ Log4j detection and utilization
https://github.com/0e0w/HackLog4j

malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique
https://github.com/aaaddress1/Skrull

How to spoof the command line when spawning a new process from C#
https://github.com/plackyhacker/CmdLineSpoofer

An evolving how-to guide for securing a #Linux server
https://github.com/imthenachoman/How-To-Secure-A-Linux-Server

random collection of #Linux utilities
https://github.com/util-linux/util-linux

#Cobalt_Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities
https://github.com/boku7/BokuLoader

#Cobalt_Strik BOF to list Windows Pipes & return their Owners & DACL Permissions
https://github.com/boku7/xPipe

GDA is a new fast and powerful decompiler in C++ for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file
https://github.com/charles2gan/GDA-android-reversing-Tool

A extract & decryption and pack & encryption tools for typora
https://github.com/Mas0nShi/typoraCracker

Deep Packet Inspection circumvention utilits (for Windows)
https://github.com/ValdikSS/GoodbyeDPI

A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy
https://github.com/hmgle/graftcp

A simple way to block access to the internet per app
https://github.com/M66B/NetGuard