Automated OSINT tool for phone number discovery, pattern detection, and cross-platform correlation.

A collective of different IRs for the Flipper (maintained)

Basic DECT Voice Scanning on Windows with a HackRF

Next-generation RTL-SDR wideband spectrum analyzer with live FFT and waterfall display (Dear ImGui + GLFW + OpenGL)

Flutter Android pager decoder using RTL-SDR USB OTG + multimon-ng (POCSAG/FLEX)

The DECT Toolkit

A stealthy loader for shellcode staged with http/https like Sliver

A ~9M parameter LLM that talks like a small fish.

AI-powered penetration testing assistant using local LLM on linux (Parrot OS)

ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit

Synack Red Team Firewall Script

Documentation automation for OpenGraph extensions

JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by outputting data as JSON for ingestion into BloodHound.

Ethicore Engine™ is an AI safety, ethics, and compliance platform. This repo consists of the open-source components of Ethicore Engine™ - Guardian SDK; designed to protect your AI applications from…

CTI Expert — Cyber Threat Intelligence & OSINT analysis skill for Claude Code. 67+ commands, 35 techniques, no API keys required.

🪨 why use many token when few token do trick — Claude Code skill that cuts 65% of tokens by talking like caveman

Create Reddit Videos with just✨ one command ✨

The SMS Gateway for Android™ app enables sending and receiving SMS messages through an API that can be accessed directly on the device or via a cloud server when direct device access is not possible.

Fileless C2 agent written in pure x64 Assembly for Linux. Features stealth ICMP tunneling, memory-only execution via memfd_create, and terminal-independent daemonization.

Modern WiFi auditing library for ESP32 using advanced 802.11 techniques. Captures WPA/WPA2/WPA3 handshakes via PMKID extraction and CSA injection (bypasses PMF). Harvests enterprise credentials, su…

Flipper Zero Carjacker App - Private Unleashed V2

X-IG OSINT is an advanced Instagram OSINT toolkit that provides deep profile analysis, username scanning, account age checking, bot detection, shadowban detection, and breach lookup — all in a fast…

Security scanner for MCP servers. Grades auth, permissions, injection risks, and tool safety. The Lighthouse of agent security.

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

Independently authored prompt templates for AI coding agents — system prompts, tool prompts, agent delegation, memory management, and multi-agent coordination. Informed by studying Claude Code.

Generate a compact codebase index for AI assistants — saves 50K+ tokens per conversation

The ultimate home lab dash with agentic AI features bolted in. Single sign-on, HTTPS enforced, dockerised and modular. Can be run completely offline too!

The samples referenced in my book, Evasive Malware (No starch Press)

A Python program to scrape secrets from GitHub through usage of a large repository of dorks.