Am I Affected By MeltdownMeltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.
Stars: ✭ 549 (+413.08%)
Nmap Nse InfoBrowse and search through nmap's NSE scripts.
Stars: ✭ 54 (-49.53%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+30656.07%)
Vulstudy使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。
Stars: ✭ 1,245 (+1063.55%)
AwspxA graph-based tool for visualizing effective access and resource relationships in AWS environments.
Stars: ✭ 546 (+410.28%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-51.4%)
OpcdeOPCDE Cybersecurity Conference Materials
Stars: ✭ 538 (+402.8%)
Flask UnsignCommand line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
Stars: ✭ 90 (-15.89%)
A2svAuto Scanning to SSL Vulnerability
Stars: ✭ 524 (+389.72%)
WindowsexploitsWindows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
Stars: ✭ 1,243 (+1061.68%)
FuzzapiFuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem
Stars: ✭ 521 (+386.92%)
Bugcrowd Levelup Subdomain EnumerationThis repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Stars: ✭ 513 (+379.44%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (-2.8%)
Linkedin2usernameOSINT Tool: Generate username lists for companies on LinkedIn
Stars: ✭ 504 (+371.03%)
Beef Over WanBrowser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]
Stars: ✭ 82 (-23.36%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (+367.29%)
SsrfmapSimple Server Side Request Forgery services enumeration tool.
Stars: ✭ 50 (-53.27%)
WinpwnAutomation for internal Windows Penetrationtest / AD-Security
Stars: ✭ 1,303 (+1117.76%)
PrismaticaResponsive Command and Control System
Stars: ✭ 81 (-24.3%)
Vulscanvulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486 (+354.21%)
ScriptingPS / Bash / Python / Other scripts For FUN!
Stars: ✭ 47 (-56.07%)
Cve 2018 20555Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555
Stars: ✭ 78 (-27.1%)
Exploit Cve 2016 9920Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container
Stars: ✭ 34 (-68.22%)
Afl Compiler FuzzerVariation of american fuzzy lop for testing compilers for C-like languages, revised by Alex Groce & collaborators to fuzz tools processing source code in C-like languages
Stars: ✭ 47 (-56.07%)
VenomVenom - A Multi-hop Proxy for Penetration Testers
Stars: ✭ 1,228 (+1047.66%)
AutosploitAutomated Mass Exploiter
Stars: ✭ 4,500 (+4105.61%)
Write Ups📚 VoidHack CTF write-ups
Stars: ✭ 45 (-57.94%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+4476.64%)
BaresifterA bare-metal x86 instruction set fuzzer a la Sandsifter
Stars: ✭ 33 (-69.16%)
NetcatNetCat for Windows
Stars: ✭ 463 (+332.71%)
Log Requests To SqliteBURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
Stars: ✭ 44 (-58.88%)
DeathstarUses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.
Stars: ✭ 1,221 (+1041.12%)
QsymQSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing
Stars: ✭ 459 (+328.97%)
IcememeRoblox Exploit Source Code Called IceMeme with some cmds, lua c and limited lua execution with simple ui in c#
Stars: ✭ 42 (-60.75%)
OctopusOpen source pre-operation C2 server based on python and powershell
Stars: ✭ 449 (+319.63%)
Go Deliver Go-deliver is a payload delivery tool coded in Go.
Stars: ✭ 103 (-3.74%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (+320.56%)
FirmaeTowards Large-Scale Emulation of IoT Firmware for Dynamic Analysis
Stars: ✭ 91 (-14.95%)
Optee fuzzerThis repository contains the code for a fuzzing prototype for the OP-TEE system call interface using AFL.
Stars: ✭ 78 (-27.1%)
H EncoreFully chained kernel exploit for the PS Vita on firmwares 3.65-3.68
Stars: ✭ 968 (+804.67%)
GraphicsfuzzA testing framework for automatically finding and simplifying bugs in graphics shader compilers.
Stars: ✭ 448 (+318.69%)
Slideswon't maintain
Stars: ✭ 79 (-26.17%)
Cve 2018 18852CERIO RCE CVE-2018-18852, authenticated (vendor defaults) web-based RCE as root user.
Stars: ✭ 42 (-60.75%)
HvmiHypervisor Memory Introspection Core Library
Stars: ✭ 438 (+309.35%)
TegrarcmguiC++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)
Stars: ✭ 965 (+801.87%)
GithacktoolsThe best Hacking and PenTesting tools installer on the world
Stars: ✭ 78 (-27.1%)
Copy2java一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
Stars: ✭ 32 (-70.09%)
FfwA fuzzing framework for network servers
Stars: ✭ 97 (-9.35%)
DomatoDOM fuzzer
Stars: ✭ 1,303 (+1117.76%)
P0wny ShellSingle-file PHP shell
Stars: ✭ 949 (+786.92%)
LfuzzerFuzzing Parsers with Tokens
Stars: ✭ 28 (-73.83%)
GogitdumperDump exposed HTTP .git fast
Stars: ✭ 27 (-74.77%)