GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrary commands, using argument injection.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

SpiderFoot, the most complete OSINT collection and reconnaissance tool.

Metasploit Framework

Small and highly portable detection tests based on MITRE's ATT&CK.

The official Vim repository

A fork of AFL for fuzzing Windows binaries

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

afl is afl 2.56b with community patches, AFLfast power schedules, qemu 3.1 upgrade laf-intel support, MOpt mutators, InsTrim instrumentation, unicorn_mode and a lot more!

american fuzzy lop - a security-oriented fuzzer

A swiss army knife for pentesting networks

A curated list of different AFL forks and AFL inspired fuzzers with detailed equivalent academic papers with AFL-fuzzing tutorials

Driving safety, simplicity, and standardization in vulnerability disclosure.

Curated list of Unix binaries that can be exploited to bypass system security restrictions

Nmap - the Network Mapper. Github mirror of official SVN repository.

Automatic SQL injection and database takeover tool

Next generation web scanner

Empire is a PowerShell and Python post-exploitation agent.

The smarterly developer test.

The Browser Exploitation Framework Project