Lyncsmashlocate and attack Lync/Skype for Business
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Pocsuite3pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
HOUDINIHundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.
docker-osmedeusDocker image for Osmedeus, a fully automated offensive security tool for reconnaissance and vulnerability scanning
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
sub404A python tool to check subdomain takeover vulnerability
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
PowerProxyPowerShell SOCKS proxy with reverse proxy capabilities
offensive-docker-vpsCreate a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.
ElliotA pentesting tool inspired by mr robot and derived by zphisher
SQLbitJust another script for automatize boolean-based blind SQL injections. (Demo)
Raven-StormRaven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
EvilUSBQuick utility to craft executables for pentesting and managing reverse shells
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
CVE-2020-0688-ScannerQuick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.
xssmapIntelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
avainA Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
quick-recon.pyDo some quick reconnaissance on a domain-based web-application
FacebookBugFacebook Write-ups, PoC, and exploitation codes:
vulnerabilitiesList of every possible vulnerabilities in computer security.
serverHashtopolis - A Hashcat wrapper for distributed hashcracking
SecurityExplainedSecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
BrutusBotnet targeting Windows machines written entirely in Python & open source security project.
YAPSYet Another PHP Shell - The most complete PHP reverse shell
SimpleKeyloggerSimple Keylogger with smtp to send emails on your account using python works on linux and Windows
RecoverPy🙈 Interactively find and recover deleted or 👉 overwritten 👈 files from your terminal
linklink is a command and control framework written in rust
LiteOTPMulti OTP Spam Amp/Paralell threads
ekolabsEKOLABS esta dedicada para investigadores independientes y para la comunidad del Software Libre. Vamos a proveer de stands completos con monitor, alimentacion de energia y acceso a internet por cable, y vos vas a traer tu maquina para mostrar tu trabajo y responder preguntas de los participantes de Ekoparty Security Conference
pinkypinky - The PHP mini RAT (Remote Administration Tool)
AndroidSecNotesAn actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentesters, reverse engineer, and redteamers.
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
cyber-securityCybersecurity stuff for both the blue team and the red team, mostly red though.
Cyber-SecurityThis repository is used to store answers when resolving ctf challanges, how i came to that answer and the line of thought used to reach it.
pdfcrackAn Advanced tool to Crack Any Password Protected PDF file. A very user friendly script especially for noob hackers.
Behold3r👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱
archer-t2u-plus-linuxTP-Link Archer T2U Plus / AC600 High Gain USB Wifi Adapter Review & Driver installation Guide for various platforms.
AdbNetA tool that allows you to search for vulnerable android devices across the world and exploit them.