Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (+61.02%)
GoaltdnsA permutation generation tool written in golang
Stars: ✭ 119 (+0.85%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (+127.97%)
WebmapA Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing
Stars: ✭ 188 (+59.32%)
HawkeyeHawkeye filesystem analysis tool
Stars: ✭ 202 (+71.19%)
AutoenumAutomatic Service Enumeration Script
Stars: ✭ 134 (+13.56%)
DeckerDeclarative penetration testing orchestration framework
Stars: ✭ 263 (+122.88%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (+111.86%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (+177.97%)
W5Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Stars: ✭ 367 (+211.02%)
Reconspider🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (+426.27%)
BbreconPython library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (+43.22%)
GetjsA tool to fastly get all javascript sources/files
Stars: ✭ 190 (+61.02%)
NtlmreconEnumerate information from NTLM authentication enabled web endpoints 🔎
Stars: ✭ 252 (+113.56%)
IkyOSINT Project
Stars: ✭ 203 (+72.03%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+20.34%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-75.42%)
MosintAn automated e-mail OSINT tool
Stars: ✭ 184 (+55.93%)
FavfreakMaking Favicon.ico based Recon Great again !
Stars: ✭ 564 (+377.97%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (+410.17%)
Jok3rJok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Stars: ✭ 645 (+446.61%)
Dumpsterfire"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (+556.78%)
Sn0intSemi-automatic OSINT framework and package manager
Stars: ✭ 814 (+589.83%)
Di.we.hRepositório com conteúdo sobre web hacking em português
Stars: ✭ 156 (+32.2%)
WpreconWPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.
Stars: ✭ 135 (+14.41%)
Ecommerce Website Security ChecklistList of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.
Stars: ✭ 98 (-16.95%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+1075.42%)
H8mailEmail OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Stars: ✭ 2,163 (+1733.05%)
SitedorksSearch Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.
Stars: ✭ 221 (+87.29%)
PhoniaPhonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.
Stars: ✭ 221 (+87.29%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (+50%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (+5.93%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-7.63%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+149.15%)
Sub-DrillA very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-40.68%)
Zbn安全编排与自动化响应平台
Stars: ✭ 201 (+70.34%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+2868.64%)
GreconYour Google Recon is Now Automated
Stars: ✭ 119 (+0.85%)
Awesome HackingA collection of various awesome lists for hackers, pentesters and security researchers
Stars: ✭ 48,038 (+40610.17%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+331.36%)
ReconpiReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.
Stars: ✭ 490 (+315.25%)
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (+492.37%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+6040.68%)
SimplyemailEmail recon made fast and easy, with a framework to build on
Stars: ✭ 779 (+560.17%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+261.86%)
WinpwnAutomation for internal Windows Penetrationtest / AD-Security
Stars: ✭ 1,303 (+1004.24%)
WebwhatsappbotCore to automatize whatsapp - working 11/2018
Stars: ✭ 59 (-50%)
KeyeKeye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.
Stars: ✭ 101 (-14.41%)
SpellbookMicro-framework for rapid development of reusable security tools
Stars: ✭ 53 (-55.08%)
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+2814.41%)
BrutesploitBruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p
Stars: ✭ 424 (+259.32%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+725.42%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (-11.02%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-1.69%)
QuarantyneModern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails
Stars: ✭ 113 (-4.24%)