Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

This project is under active development, there may be bugs or missing features. If you have any problem or would like to see a feature implemented, please,

Azure access tokens allow you to authenticate to certain endpoints as a user who signs in with a device code. Even if they used multi-factor authentication.

The concept of online anonymity refers to keeping the identity of communicators hidden. Online privacy is more than just encrypting and decrypting data; it also includes the concealment of identity. The Dark Web is a section of the Internet that achieves…

In0ri is a defacement detection system utilizing a image-classification convolutional neural network.

Reconmap is a vulnerability assessment and penetration testing (VAPT) platform. It helps software engineers and infosec pros collaborate on security projects,

CLI component of purpleteam - Currently in alpha

CredPhish is a PowerShell script designed to invoke credential prompts and exfiltrate passwords. It relies on CredentialPicker to collect user

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

You can consider cloud computing as the backbone of today’s data-driven industries and app-based tech ecosystem. It acts as a bridge between AI and Machine

Vulnmachines​​ - Place for Pentesters
Vulnmachines is online cyber security training platform with a massive number of labs, allowing individuals, students, cyber professionals, companies, universities and all kinds of organizations around the world to enhance…

Social engineering tool for multiple purposes such as locating target's location, webcam access, OS Password grabber

A cross platform RAT written in pure Python. The RAT accept commands alongside arguments to either perform as the server who accepts connections or to perform

2. C-b w (Move into the TmuxRecon Session).

The PowerShell Armoury is meant for pentesters, "insert-color-here"-teamers and everyone else who uses a variety of PowerShell tools during their engagements.