reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Advanced dork Search & Mass Exploit Scanner

Powerfull XSS Scanning and Parameter analysis tool&gem

Hacking tools

Web Application Security Scanner Framework

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Git All the Payloads! A collection of web attack payloads.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

pentest framework

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

A container repository for my public web hacks!

Automatic SSRF fuzzer and exploitation tool

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Collection of quality safety articles. Awesome articles.

Hooks in to interesting functions and helps reverse the web app faster.

Open source all-in-one CLI tool to semi-automate pentesting.

Complete PHP-based Login/Registration system, Profile system, Chat room, Forum system and Blog/Polls/Event Management System.

A fast web directory/file enumeration tool written in Rust

A tool to test security of json web token