SubscraperSubdomain enumeration through various techniques
FsocietyA Modular Penetration Testing Framework
Scanners BoxA powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
PandorasBoxSecurity tool to quickly audit Public Box files and folders.
ElliotA pentesting tool inspired by mr robot and derived by zphisher
AriaCloudA Docker container for remote penetration testing.
xss-chefA web application for generating custom XSS payloads
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
ViPERWeb App Pen Tester (Web Interface)
vulnerabilitiesList of every possible vulnerabilities in computer security.
CoogleA shot-for-shot remake of the Google Login Page.
YAPSYet Another PHP Shell - The most complete PHP reverse shell
WebspoiltThis script will you help to find the information about the website and to help in penetrating testing
linklink is a command and control framework written in rust
LiteOTPMulti OTP Spam Amp/Paralell threads
NarthexModular personalized dictionary generator.
PayloadsPayload Arsenal for Pentration Tester and Bug Bounty Hunters
hinjectHost Header Injection Checker
RedTeam toolkitRed Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.
hackipyHacking, pen-testing, and cyber-security related tools built with Python.
VulWebajuVulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.
hsploitAn advanced command-line search engine for Exploit-DB
dark-lord-obamaAV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities
rsmReverse shell manager using tmux and ncat
maalikFeature-rich Post Exploitation Framework with Network Pivoting capabilities.
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
reverse-sshStatically-linked ssh server with reverse shell functionality for CTFs and such
Reconky-Automated Bash ScriptReconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
oscp-omnibusA collection of resources I'm using while working toward the OSCP
vsauditVOIP Security Audit Framework
domhttpxdomhttpx is a google search engine dorker with HTTP toolkit built with python, can make it easier for you to find many URLs/IPs at once with fast time.
IMAPLoginTesterA simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.
BackToMeLittle tool made in python to create payloads for Linux, Windows and OSX with unique handler
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
centCommunity edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
Pwdlyser-CLIPython-based CLI Password Analyser (Reporting Tool)
anubisCaptive wifi hotspot bypass tool for Linux
argusArgus Advanced Remote & Local Keylogger For macOS and Windows
ggtfobinsGet GTFOBins info about a given exploit from the command line
teatimeAn RPC attack framework for Blockchain nodes.
auto-recon-ngAutomated script to run all modules for a specified list of domains, netblocks or company name
STEWSA Security Tool for Enumerating WebSockets