Mssqli DuetSQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
Stars: ✭ 82 (+182.76%)
Mutual labels: penetration-testing, sql-injection
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (+331.03%)
Mutual labels: penetration-testing, bug-bounty
KeyeKeye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.
Stars: ✭ 101 (+248.28%)
Mutual labels: penetration-testing, bug-bounty
SwiftnessxA cross-platform note-taking & target-tracking app for penetration testers.
Stars: ✭ 673 (+2220.69%)
Mutual labels: penetration-testing, bug-bounty
DirsearchWeb path scanner
Stars: ✭ 7,246 (+24886.21%)
Mutual labels: penetration-testing, bug-bounty
Black WidowGUI based offensive penetration testing tool (Open Source)
Stars: ✭ 124 (+327.59%)
Mutual labels: penetration-testing, sql-injection
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-51.72%)
Mutual labels: penetration-testing, sql-injection
Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (+555.17%)
Mutual labels: penetration-testing, bug-bounty
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (+403.45%)
Mutual labels: penetration-testing, sql-injection
Cerberus一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Stars: ✭ 389 (+1241.38%)
Mutual labels: penetration-testing, sql-injection
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (+382.76%)
Mutual labels: penetration-testing, sql-injection
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+10044.83%)
Mutual labels: penetration-testing, sql-injection
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (+2310.34%)
Mutual labels: penetration-testing, bug-bounty
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+11758.62%)
Mutual labels: penetration-testing, bug-bounty
Awesome HackingA collection of various awesome lists for hackers, pentesters and security researchers
Stars: ✭ 48,038 (+165548.28%)
Mutual labels: penetration-testing, bug-bounty
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (+734.48%)
Mutual labels: penetration-testing, bug-bounty
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (+48.28%)
Mutual labels: penetration-testing, bug-bounty
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+6548.28%)
Mutual labels: penetration-testing, sql-injection
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+913.79%)
Mutual labels: penetration-testing, bug-bounty