YasserGersy / Cazador_unr
Hacking tools
Stars: ✭ 95
Projects that are alternatives of or similar to Cazador unr
Blackwidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+833.68%)
Mutual labels: xss, owasp, rce, csrf, sqli, bugbounty
Reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+925.26%)
Mutual labels: hacking, xss, sqli, bugbounty, fuzzing
Penetration testing poc
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+3961.05%)
Mutual labels: xss, poc, rce, csrf
Hackerone Reports
Top disclosed reports from HackerOne
Stars: ✭ 458 (+382.11%)
Mutual labels: xss, rce, csrf, bugbounty
V3n0m Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+791.58%)
Mutual labels: dns, hacking, xss, sqli
Commodity Injection Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267 (+181.05%)
Mutual labels: xss, poc, rce, fuzzing
Phpvuln
Audit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (+53.68%)
Mutual labels: hacking, xss, owasp, sqli
Collection Document
Collection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+1360%)
Mutual labels: dns, hacking, xss
vaf
Vaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+209.47%)
Mutual labels: xss, fuzzing, bugbounty
Dictionary Of Pentesting
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+417.89%)
Mutual labels: dns, bugbounty, fuzzing
0d1n
Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.
Stars: ✭ 506 (+432.63%)
Mutual labels: hacking, xss, fuzzing
Pentesting Bible
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+9353.68%)
Mutual labels: hacking, csrf, bugbounty
Ary
Ary 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (+153.68%)
Mutual labels: automation, xss, poc
Payloads
Git All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+2912.63%)
Mutual labels: hacking, xss, sqli
Onelistforall
Rockyou for web fuzzing
Stars: ✭ 213 (+124.21%)
Mutual labels: hacking, bugbounty, fuzzing
Hacker101
Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+12790.53%)
Mutual labels: hacking, xss, csrf
Fdsploit
File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (+109.47%)
Mutual labels: hacking, owasp, fuzzing
Xspear
Powerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+513.68%)
Mutual labels: hacking, xss, bugbounty
Tools
Listeners
- HTTP Server
- DNS Server
- TCP Server
- POSTMessage Hooker
- Websocket Hooker
Analyzers
- HTTP
- JS-Files
- FileSystem
- Binary
- Packet
Net Tools
- Get DNS Records
- Resolve Hosts
- Reverse IPs
- Passive DNS
- DNS History
Text Tools
- Text Processing
- Block construct
- Format generator
- pattern creation
- Encrypt/Decrypt data
- Hash Identification
- Crackers
- Payload Generators
- Encoders/Decoders
- Poc Generators (Python , bash , HTML)
Recon
- Get Websites ScreenShots
- GET Subdomains (Scrabbing , Minning , DNS-brute-force,Http-brute-force)
- Site categorizer
- s3/GC bucket enumeration
- Github Lister
- Ip History
Scanners
- Detect Misconfiguration
- Port/vulnerability/ssl scanner
- Vulnerability Exploiters
- Waf Detection
Scrabbers
- Download Android apps (APK)
- Travis-CI logs fetching
Tools discussed separately here
[scanner]
[TcpListener]
[FileMiner]
[Subscrabber]
[Hpinger]
if the app is not working proberly , Download the missing dlls, put them in application folder , beside the executable file
Some notes:
- This tool is meant primarily for bug hunnters (specially beginers).
- This tool is not backdoored with any malicious software/tracking .
- Memory is not carefully managed so be carefull , do not use all the tools at the same time , Consider to make targets and threads less than 1000.
- Do not use it illegally
- Tools starting with _ are not built yet , i added buttons to remmember building in future, hence no need to reverse engineer the tool in order to enable them , if you have time feel free to do it no problem.
- Many third-parties are used without permitssion no APIS used.
- The source code is not published because the tool is a beta and the code is uggly and worse than my hand writing.
- Project is planned to be open-source with the first release.
- Suggestions are deeply welcome.
- Credits are reserved for all authors and third-parties.
- Feel free to push any issue
Linked IN
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].