Skip to content

Pinned Loading

  1. PowerUpSQL PowerUpSQL Public

    PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

    PowerShell 2.7k 474

  2. SQLInjectionWiki SQLInjectionWiki Public

    A wiki focusing on aggregating and documenting various SQL injection methods

    HTML 796 148

  3. PESecurity PESecurity Public

    PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.

    PowerShell 667 149

Repositories

Showing 10 of 149 repositories
  • OCISigner Public

    A Burp Suite extension to sign OCI HTTP requests using all supported OCI authentication mechanisms including API keys, session tokens, instance principals, & resource principals

    NetSPI/OCISigner’s past year of commit activity
    Java 3 BSD-3-Clause 0 0 7 Updated Jul 17, 2026
  • gcpwn Public

    Pentesting framework for GCP & Google Workspace that enumerates/downloads data that feeds into a BloodHound Opengraph model. Includes credential management, workspace management, exploit scripts, etc.

    NetSPI/gcpwn’s past year of commit activity
    Python 305 BSD-3-Clause 28 0 3 Updated Jul 17, 2026
  • OCInferno Public

    A pentesting tool for enumeration/download/graphical analysis of OCI content. Includes an OpenGraph generator for Bloodhound-style analysis.

    NetSPI/OCInferno’s past year of commit activity
    Python 20 BSD-3-Clause 2 0 2 Updated Jul 16, 2026
  • AD-PathFinder Public

    Attack path mapping for Active Directory, ADCS, SCCM, and MSSQL using BloodHound CE + OpenGraph data.

    NetSPI/AD-PathFinder’s past year of commit activity
    Python 58 BSD-3-Clause 2 0 0 Updated Jul 9, 2026
  • confused Public Forked from visma-prodsec/confused

    Tool to check for dependency confusion vulnerabilities in multiple package management systems

    NetSPI/confused’s past year of commit activity
    Go 0 MIT 114 0 0 Updated Jul 8, 2026
  • oci-lexer-parser Public

    A utility to convert OCI IAM Policy Statements and Dynamic Group Matching Rules to serialized JSON output.

    NetSPI/oci-lexer-parser’s past year of commit activity
    Python 3 BSD-3-Clause 0 0 1 Updated Jul 5, 2026
  • MicroBurst Public

    A collection of scripts for assessing Microsoft Azure security

    NetSPI/MicroBurst’s past year of commit activity
    PowerShell 2,408 BSD-3-Clause 340 3 2 Updated Jun 29, 2026
  • BypassFuzzer-Burp Public Forked from intrudir/BypassFuzzer-Burp

    The Java Burp Extension version of @intrudir's BypassFuzzer tool

    NetSPI/BypassFuzzer-Burp’s past year of commit activity
    Java 0 MIT 4 0 0 Updated Jun 26, 2026
  • ForceHound Public

    Salesforce identity and permission graph collector for BloodHound CE. Maps users, profiles, permission sets, roles, groups, sharing rules, connected apps, and field-level security into attack-path graphs.

    NetSPI/ForceHound’s past year of commit activity
    Python 47 BSD-3-Clause 3 0 2 Updated Jun 25, 2026
  • AzurePentestingWiki Public

    This is a wiki for Azure pentesting techniques. Powered by Zensical and GitHub Pages

    NetSPI/AzurePentestingWiki’s past year of commit activity
    HTML 1 BSD-3-Clause 0 0 0 Updated Jun 23, 2026

Top languages

Loading…

Most used topics

Loading…