MosintAn automated e-mail OSINT tool
FacebashFacebook Brute Forcer in shellscript using TOR
LockphishLockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
GetjsA tool to fastly get all javascript sources/files
WebmapA Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing
TwitterxKeeping Twitter for macOS alive with code injection
MouseMouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.
Awesome Shodan Queries🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
ApicheckThe DevSecOps toolset for REST APIs
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
Windows HacksCreative and unusual things that can be done with the Windows API.
HackapkAn Advanced Tool For Complete Apk-Modding In Termux ...
Facebook CrackerFacebook Cracker Version 1.0 can crack into Facebook Database 100% without Interruption By Facebook Firewall
StegcloakHide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
MemjectSimple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.
Jwt Hack🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
HacktricksWelcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Antiddos System🛡️⚔️ Protect your web app from DDOS attack or the Dead Ping + CAPTCHA VERIFICATION in one line!
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Umbrella androidOpen source Android, iOS and Web app for learning about and managing digital and physical security. From how to send a secure message to dealing with a kidnap. Umbrella has best practice guides in over 40 topics in multiple languages. Used daily by people working in high risk countries - journalists, activists, diplomats, business travelers etc.
Remote Desktop CachingThis tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.
TechnowloggerTechNowLogger is Windows/Linux Keylogger Generator which sends key-logs via email with other juicy target info
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Itrace🍰 Trace objc method call for ios and mac
Cehv10 Notes📕 Both personal and public notes for EC-Council's CEHv10 312-50, because its thousands of pages/slides of boredom, and a braindump to many
Attiny85RubberDucky like payloads for DigiSpark Attiny85
BbreconPython library and CLI for the Bug Bounty Recon API
JsshellJSshell - JavaScript reverse/remote shell
Dymerge🔓 A dynamic dictionary merger for successful dictionary based attacks.
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
HydrafwHydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing
Ip AttackAuto IP or Domain Attack Tool ( #1 )
LazybeeCreate Best Wordlist From Python Tool In Termux
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
AntidebuggingA collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Hacking ToolSocial media & camera hacking & whatsapp virus & SMS bombing
Ethical HackingThis repository contains reference material & links for people willing to learn Ethical Hacking
T14m4tAutomated brute-forcing attack tool.
Zeebsploitweb scanner - exploitation - information gathering
HardentheworldHarden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Kickthemout💤 Kick devices off your network by performing an ARP Spoof attack.
Wifi PassviewAn open source batch script based WiFi Passview for Windows!
Bot18Bot18 is a high-frequency cryptocurrency trading bot developed by Zenbot creator @carlos8f
Instagram HackerThis is an advanced script for Instagram bruteforce attacks. WARNING THIS IS A REAL TOOL!
Di.we.hRepositório com conteúdo sobre web hacking em português
PortiaPortia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network
UrlcrazyGenerate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
JalescJust Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box