NtlmreconEnumerate information from NTLM authentication enabled web endpoints π
AdcollectorA lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
CrosslinkedLinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
ActivereignA Network Enumeration and Attack Toolset for Windows Active Directory Environments.
DirstalkModern alternative to dirbuster/dirb
Bscanan asynchronous target enumeration tool
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Phpenumsπ© Provides enumerations for PHP & frameworks integrations
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
EnumdbRelational database brute force and post exploitation tool for MySQL and MSSQL
PspyMonitor linux processes without root permissions
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Powershell Red TeamCollection of PowerShell functions a Red Teamer may use to collect data from a machine
JalescJust Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
AmassIn-depth Attack Surface Mapping and Asset Discovery
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
AutoenumAutomatic Service Enumeration Script
IntelspyPerform automated network reconnaissance scans
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Oscp AutomationA collection of personal scripts used in hacking excercises.
Scillaπ΄ββ οΈ Information Gathering tool π΄ββ οΈ DNS / Subdomains / Ports / Directories enumeration
FeroxbusterA fast, simple, recursive content discovery tool written in Rust.
ErodirA fast web directory/file enumeration tool written in Rust
Tidos FrameworkThe Offensive Manual Web Application Penetration Testing Framework.
Laravel EnumSimple, extensible and powerful enumeration implementation for Laravel.
Ldap searchPython3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.
Enum4linuxpyEveryone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.
SsrfmapSimple Server Side Request Forgery services enumeration tool.
OpencvdeviceenumeratorThis repository contains a class that allows the enumeration of video and audio devices in order to get the device IDs that are required to create a VideoCapture object inside OpenCV (in Windows).
AwsbucketdumpSecurity Tool to Look For Interesting Files in S3 Buckets
Offport killerThis tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.
PxenumA shell script that automatically performs a series of *NIX enumeration tasks.
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Rapidscanπ The Multi-Tool Web Vulnerability Scanner.
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
DomainedMulti Tool Subdomain Enumeration
Kernelpopkernel privilege escalation enumeration and exploitation framework
AmassIn-depth Attack Surface Mapping and Asset Discovery
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Netfabric.hyperlinq High performance LINQ implementation with minimal heap allocations. Supports enumerables, async enumerables, arrays and Span<T>.
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Php EnumSimple and fast implementation of enumerations with native PHP
Wadcoms.github.ioWADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.
RoothelperA Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.