Skip to content

@NetSPI NetSPI

Change the repository type filter

All

    Repositories list

    122 repositories

    • bambdas

      Public
      Bambdas collection for Burp Suite Professional and Community.
      Java
      GNU Lesser General Public License v3.0
      31000Updated Dec 23, 2024Dec 23, 2024

    • Open-LLM-Security-Benchmark

      Public
      HTML
      Other
      0400Updated Dec 16, 2024Dec 16, 2024

    • BypassFuzzer

      Public
      Fuzz 401/403/404 pages for bypasses
      Python
      29000Updated Dec 14, 2024Dec 14, 2024

    • PowerHuntShares

      Public
      PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
      PowerShell
      Other
      8572672Updated Dec 12, 2024Dec 12, 2024

    • PowerHunt

      Public
      PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
      PowerShell
      Other
      106230Updated Dec 12, 2024Dec 12, 2024

    • PowerUpSQL

      Public
      PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
      PowerShell
      Other
      4622.5k192Updated Dec 12, 2024Dec 12, 2024

    • MicroBurst

      Public
      A collection of scripts for assessing Microsoft Azure security
      PowerShell
      Other
      3142.1k30Updated Nov 6, 2024Nov 6, 2024

    • FuncoPop

      Public
      Tools for attacking Azure Function Apps
      PowerShell
      Other
      66500Updated Oct 29, 2024Oct 29, 2024

    • zap-extensions

      Public
      ZAP Add-ons
      HTML
      Apache License 2.0
      713000Updated Oct 22, 2024Oct 22, 2024

    • community-scripts

      Public
      A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
      JavaScript
      Apache License 2.0
      240000Updated Oct 18, 2024Oct 18, 2024

    • AWSSigner

      Public
      Burp Extension for AWS Signing
      Java
      MIT License
      368663Updated Oct 7, 2024Oct 7, 2024

    • zaproxy

      Public
      The ZAP by Checkmarx Core project
      Java
      Apache License 2.0
      2.3k000Updated Oct 3, 2024Oct 3, 2024

    • browser-extension

      Public
      TypeScript
      Apache License 2.0
      8000Updated Sep 21, 2024Sep 21, 2024

    • zap-api-python

      Public
      ZAP Python API
      Python
      Apache License 2.0
      88000Updated Sep 16, 2024Sep 16, 2024

    • gcpwn

      Public
      Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
      Python
      BSD 3-Clause "New" or "Revised" License
      1721310Updated Sep 9, 2024Sep 9, 2024

    • PESecurity

      Public
      PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
      PowerShell
      MIT License
      14862661Updated Jul 31, 2024Jul 31, 2024

    • Scheduled-Task

      Public
      Native Binary for Creating a Scheduled Task
      centralattack-sim
      C++
      BSD 3-Clause "New" or "Revised" License
      0201Updated Jul 25, 2024Jul 25, 2024

    • WikiJekyllTheme

      Public
      Wiki theme for various NetSPI wikis
      jekyll-theme
      HTML
      MIT License
      3100Updated May 20, 2024May 20, 2024

    • SQLInjectionWiki

      Public
      A wiki focusing on aggregating and documenting various SQL injection methods
      mysqlsqlwikiinjectionoraclesqlimssqlsqlservernetspi
      HTML
      14976722Updated May 8, 2024May 8, 2024

    • AutoDirbuster

      Public
      Automatically run and save ffuf scans for multiple IPs
      Python
      Other
      237500Updated Mar 19, 2024Mar 19, 2024

    • ruler

      Public
      A tool to abuse Exchange services
      Go
      Other
      359900Updated Mar 18, 2024Mar 18, 2024

    • silkwasm

      Public
      HTML Smuggling with Web Assembly
      Go
      BSD 3-Clause "New" or "Revised" License
      12000Updated Feb 20, 2024Feb 20, 2024

    • JavaSerialKiller

      Public
      Burp extension to perform Java Deserialization Attacks
      Java
      MIT License
      4620816Updated Feb 2, 2024Feb 2, 2024

    • vbamc

      Public
      Visual Basic for Applications macro project compiler.
      C#
      MIT License
      2100Updated Jan 23, 2024Jan 23, 2024

    • PowerShell

      Public
      NetSPI PowerShell Scripts
      PowerShell
      10432700Updated Jan 15, 2024Jan 15, 2024

    • BetaFast

      Public
      Vulnerable thick client applications used as examples in the Introduction to Hacking Desktop Applications blog series
      C#
      GNU General Public License v3.0
      1310003Updated Jan 9, 2024Jan 9, 2024

    • GOAD

      Public
      game of active directory
      JavaScript
      GNU General Public License v3.0
      783000Updated Jan 3, 2024Jan 3, 2024

    • MonkeyWorks

      Public
      C#
      BSD 3-Clause "New" or "Revised" License
      286100Updated Dec 20, 2023Dec 20, 2023

    • XPath-Injection-Lab

      Public
      C#
      0200Updated Nov 3, 2023Nov 3, 2023

    • DetectionRules

      Public
      This is a single location to store detection rules of various types.
      0400Updated Oct 30, 2023Oct 30, 2023