🚨 Pentest List Tool Spotlight 🚨 DLLHijackTest DLL and PowerShell script to assist with finding DLL hijacks Find it here: github.com/slyd0g/DLLHija… #bugbounty #redteam

Got a Linux command but don't want to read through the man page to find out what it does? I got you fam explainshell.com #redteam #bugbounty

IT Certificates - Gotta Catch 'Em All! pauljerimy.com/security-certi… #IT #infosec

🚨 Pentest List Tool Spotlight 🚨 Graphinder Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce Find it here: github.com/Escape-Technol…

🚨 Pentest List Tool Spotlight 🚨 wpgarlic A proof-of-concept WordPress plugin fuzzer Find it here: github.com/kazet/wpgarlic #bugbounty

🚨 Pentest List Tool Spotlight 🚨 ADcheck Assess the security of your Active Directory with few or all privileges. Find it here: github.com/CobblePot59/AD… #activedirectory #redteam

🚨 Pentest List Tool Spotlight 🚨 Coercer A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods. Find it here: github.com/p0dalirius/Coe… #redteam #blueteam #bugbounty

🚨 Pentest List Tool Spotlight 🚨 ADcheck Assess the security of your Active Directory with few or all privileges. Find it here: github.com/CobblePot59/AD… #redteam #blueteam #bugbounty

🚨 Pentest List Tool Spotlight 🚨 psudohash Generates millions of keyword-based password mutations in seconds. Find it here: github.com/t3l3machus/psu…

🚨 Pentest List Tool Spotlight 🚨 HExHTTP HExHTTP is a tool designed to perform tests on HTTP headers and analyze the results to identify vulnerabilities and interesting behaviours. Find it here: github.com/c0dejump/HExHT…

🚨 Pentest List Tool Spotlight 🚨 EntraFalcon PowerShell tool for assessing the security of Entra ID environments. Identify privileged objects, risky assignments, and potential misconfigurations. Find it here: github.com/CompassSecurit…

🚨 Pentest List Tool Spotlight 🚨 PowerDodder A persistence utility for stealthily embedding commands into existing script files by leveraging files that are frequently accessed but rarely modified. Find it here: github.com/itaymigdal/Pow…

🚨 Pentest List Tool Spotlight 🚨 RedTeamTP Automated deployment of red team infrastructure through GitHub Actions. It supports configurable C2 frameworks and phishing. Find it here: github.com/CultCornholio/…

🚨 Pentest List Tool Spotlight 🚨 evil-winrm-py Execute commands interactively on remote Windows machines using the WinRM protocol Find it here: github.com/adityatelange/…

🚨 Pentest List Tool Spotlight 🚨 CrossLinked LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping Find it here: github.com/m8sec/CrossLin…

🚨 Pentest List Tool Spotlight 🚨 proxyblob SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication Find it here: github.com/quarkslab/prox…

🚨 Pentest List Tool Spotlight 🚨 Secrets Ninja Secrets Ninja is an GUI tool for validating & investigating API keys discovered during pentesting & bug bounty hunting. Find it here: secrets.ninja/autopilot #bugbounty #appsec

Do you need a VPN right now? Well, I made a tool. It uses AWS and WireGuard to give you a new IP address, in minutes. Simply copy the client config into your WireGuard app github.com/MrTurvey/FastW…

You know what's annoying on security assessments? Web proxies and hardened machines (No USB, no SMB, etc) So, avoid that and use my new tool. It incorporates Cloudflared to ~hopefully~ bypass web proxies and allow you to get data out of the environment. github.com/MrTurvey/slips…

I always forget to delete 2FA tokens from my mobile app after I have finished a security assessment and the account has been deleted. I have so many tokens and I don't know which are still used and which are not😅So, I fixed that issue: github.com/MrTurvey/temp2…