Skip to content

@NetSPI NetSPI

Change the repository type filter

All

    Repositories list

    131 repositories

    • MSSQLHound

      Public
      PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
      PowerShell
      GNU General Public License v3.0
      10000Updated Jul 30, 2025Jul 30, 2025

    • MicroBurst

      Public
      A collection of scripts for assessing Microsoft Azure security
      PowerShell
      BSD 3-Clause "New" or "Revised" License
      3262.2k41Updated Jul 23, 2025Jul 23, 2025

    • CVE-2025-4660

      Public
      PoC for CVE-2025-4660 demonstrating exploitation of the Forescout SecureConnector on Windows
      Python
      BSD 3-Clause "New" or "Revised" License
      41200Updated Jul 16, 2025Jul 16, 2025

    • set_sail

      Public
      SailPoint IQService - RCE via Default Encryption Key
      Python
      Other
      3100Updated Jul 8, 2025Jul 8, 2025

    • BAS-Public-Tools

      Public
      0000Updated Jun 18, 2025Jun 18, 2025

    • gcpwn

      Public
      Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
      Python
      BSD 3-Clause "New" or "Revised" License
      2525810Updated May 16, 2025May 16, 2025

    • wopper

      Public
      Automatically upload, execute, and delete a PHP file using Wordpress administrator credentials.
      Shell
      BSD 3-Clause "New" or "Revised" License
      0300Updated Apr 23, 2025Apr 23, 2025

    • test-setup-public

      Public
      0000Updated Apr 22, 2025Apr 22, 2025

    • BOF-PE

      Public
      An example reference design for a proposed BOF PE
      redteampost-ex
      C++
      BSD 3-Clause "New" or "Revised" License
      1818001Updated Apr 17, 2025Apr 17, 2025

    • PowerHuntShares

      Public
      PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
      PowerShell
      Other
      95853100Updated Apr 5, 2025Apr 5, 2025

    • trufflehog-integration-netspi

      Public
      NetSPi fork of the official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc) using TruffleHog.
      Python
      16000Updated Mar 11, 2025Mar 11, 2025

    • Challenges

      Public
      1000Updated Mar 7, 2025Mar 7, 2025

    • PowerShell

      Public
      NetSPI PowerShell Scripts
      PowerShell
      10933401Updated Jan 24, 2025Jan 24, 2025

    • AWSSigner

      Public
      Burp Extension for AWS Signing
      Java
      MIT License
      408972Updated Jan 10, 2025Jan 10, 2025

    • bambdas

      Public
      Bambdas collection for Burp Suite Professional and Community.
      Java
      GNU Lesser General Public License v3.0
      57000Updated Dec 30, 2024Dec 30, 2024

    • Open-LLM-Security-Benchmark

      Public
      HTML
      Other
      31500Updated Dec 16, 2024Dec 16, 2024

    • BypassFuzzer

      Public
      Fuzz 401/403/404 pages for bypasses
      Python
      42400Updated Dec 14, 2024Dec 14, 2024

    • PowerHunt

      Public
      PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
      PowerShell
      Other
      137130Updated Dec 12, 2024Dec 12, 2024

    • PowerUpSQL

      Public
      PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
      PowerShell
      Other
      4812.6k214Updated Dec 12, 2024Dec 12, 2024

    • FuncoPop

      Public
      Tools for attacking Azure Function Apps
      PowerShell
      Other
      118301Updated Oct 29, 2024Oct 29, 2024

    • zap-extensions

      Public
      ZAP Add-ons
      HTML
      Apache License 2.0
      733000Updated Oct 22, 2024Oct 22, 2024

    • community-scripts

      Public
      A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
      JavaScript
      Apache License 2.0
      248000Updated Oct 18, 2024Oct 18, 2024

    • zaproxy

      Public
      The ZAP by Checkmarx Core project
      Java
      Apache License 2.0
      2.4k000Updated Oct 3, 2024Oct 3, 2024

    • browser-extension

      Public
      TypeScript
      Apache License 2.0
      14000Updated Sep 21, 2024Sep 21, 2024

    • zap-api-python

      Public
      ZAP Python API
      Python
      Apache License 2.0
      90000Updated Sep 16, 2024Sep 16, 2024

    • PESecurity

      Public
      PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
      PowerShell
      MIT License
      15064961Updated Jul 31, 2024Jul 31, 2024

    • Scheduled-Task

      Public
      Native Binary for Creating a Scheduled Task
      C++
      BSD 3-Clause "New" or "Revised" License
      2301Updated Jul 25, 2024Jul 25, 2024

    • WikiJekyllTheme

      Public
      Wiki theme for various NetSPI wikis
      jekyll-theme
      HTML
      MIT License
      4100Updated May 20, 2024May 20, 2024

    • SQLInjectionWiki

      Public
      A wiki focusing on aggregating and documenting various SQL injection methods
      mysqlsqlwikiinjectionoraclesqlimssqlsqlservernetspi
      HTML
      14878022Updated May 8, 2024May 8, 2024

    • AutoDirbuster

      Public
      Automatically run and save ffuf scans for multiple IPs
      Python
      Other
      267900Updated Mar 19, 2024Mar 19, 2024