liamg / Gitjacker
Licence: unlicense
🔪 Leak git repositories from misconfigured websites
Stars: ✭ 1,249
Programming Languages
go
31211 projects - #10 most used programming language
Projects that are alternatives of or similar to Gitjacker
Infosec reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+233.23%)
Mutual labels: hacking, pentesting, penetration-testing, red-team
Hrshell
HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-84.55%)
Mutual labels: hacking, pentesting, penetration-testing, red-team
Active Directory Exploitation Cheat Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Stars: ✭ 870 (-30.34%)
Mutual labels: hacking, pentesting, penetration-testing
Passphrase Wordlist
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
Stars: ✭ 556 (-55.48%)
Mutual labels: hacking, pentesting, penetration-testing
Resources
A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-95.04%)
Mutual labels: hacking, pentesting, penetration-testing
Whonow
A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
Stars: ✭ 533 (-57.33%)
Mutual labels: hacking, penetration-testing, red-team
Red Teaming Toolkit
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Stars: ✭ 5,615 (+349.56%)
Mutual labels: hacking, pentesting, red-team
Powershell Rat
Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.
Stars: ✭ 636 (-49.08%)
Mutual labels: hacking, pentesting, penetration-testing
Penetration Testing Study Notes
Penetration Testing notes, resources and scripts
Stars: ✭ 461 (-63.09%)
Mutual labels: hacking, pentesting, penetration-testing
Lockdoor Framework
🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
Stars: ✭ 677 (-45.8%)
Mutual labels: hacking, pentesting, penetration-testing
Dirsearch
Web path scanner
Stars: ✭ 7,246 (+480.14%)
Mutual labels: hacking, pentesting, penetration-testing
Netmap.js
Fast browser-based network discovery module
Stars: ✭ 70 (-94.4%)
Mutual labels: hacking, pentesting, red-team
Linkedin2username
OSINT Tool: Generate username lists for companies on LinkedIn
Stars: ✭ 504 (-59.65%)
Mutual labels: hacking, pentesting, penetration-testing
Thc Archive
All releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (-62.05%)
Mutual labels: hacking, pentesting, penetration-testing
Nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Stars: ✭ 5,943 (+375.82%)
Mutual labels: hacking, penetration-testing, red-team
Pentestkit
Useful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-62.93%)
Mutual labels: hacking, pentesting, penetration-testing
Dumpsterfire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (-37.95%)
Mutual labels: hacking, pentesting, red-team
Dref
DNS Rebinding Exploitation Framework
Stars: ✭ 423 (-66.13%)
Mutual labels: hacking, pentesting, red-team
Hosthunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-65.81%)
Mutual labels: hacking, pentesting, penetration-testing
gitjacker
Gitjacker downloads git repositories and extracts their contents from sites where the .git directory has been mistakenly uploaded. It will still manage to recover a significant portion of a repository even where directory listings are disabled.
For educational/penetration testing use only.
More information at https://liam-galvin.co.uk/security/2020/09/26/leaking-git-repos-from-misconfigured-sites.html
Installation
curl -s "https://raw.githubusercontent.com/liamg/gitjacker/master/scripts/install.sh" | bash
...or grab a precompiled binary.
You will need to have git installed to use Gitjacker.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].