ScrutinyRandomly test state machines (such as your UI) by randomly navigating through transitions
Stars: ✭ 46 (-68.49%)
SafetySafety checks your installed dependencies for known security vulnerabilities
Stars: ✭ 982 (+572.6%)
Struts ScanPython2编写的struts2漏洞全版本检测和利用工具
Stars: ✭ 1,256 (+760.27%)
HackbarHackBar plugin for Burpsuite
Stars: ✭ 917 (+528.08%)
SillyniumAutomate the creation of Python Selenium Scripts by drawing coloured boxes on webpage elements
Stars: ✭ 100 (-31.51%)
Intrigue CoreDiscover Your Attack Surface!
Stars: ✭ 1,013 (+593.84%)
ReportportalMain Repository. Report Portal starts here - see readme below.
Stars: ✭ 1,175 (+704.79%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (+640.41%)
Appium TemplateAppium template for android testing training
Stars: ✭ 5 (-96.58%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-28.08%)
SpixUI test automation library for QtQuick/QML Apps
Stars: ✭ 48 (-67.12%)
BurpbountyBurp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
Stars: ✭ 1,026 (+602.74%)
H4ckerThis repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+7058.22%)
OpensourcetestOpenSourceTest由自动化测试-夜行者社区维护,提供的是更多地灵活性和可配置性
Stars: ✭ 37 (-74.66%)
NightwatchEnd-to-end testing framework written in Node.js and using the Webdriver API
Stars: ✭ 10,912 (+7373.97%)
Ripv6Random IPv6 - circumvents restrictive IP address-based filter and blocking rules
Stars: ✭ 10 (-93.15%)
Mssqli DuetSQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
Stars: ✭ 82 (-43.84%)
WhitewidowSQL Vulnerability Scanner
Stars: ✭ 926 (+534.25%)
Struts2 RceA Burp Extender for checking for struts 2 RCE vulnerabilities.
Stars: ✭ 114 (-21.92%)
SecretscannerFind secrets and passwords in container images and file systems
Stars: ✭ 895 (+513.01%)
PurifyAll-in-one tool for managing vulnerability reports from AppSec pipelines
Stars: ✭ 72 (-50.68%)
Angular Puppeteer DemoA demonstration repository explains how to using Puppeteer in unit testing
Stars: ✭ 59 (-59.59%)
AtscanAdvanced dork Search & Mass Exploit Scanner
Stars: ✭ 817 (+459.59%)
Gda Android Reversing ToolGDA is a new fast and powerful decompiler in C++(working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, dat…
Stars: ✭ 2,332 (+1497.26%)
Openvas ScannerOpen Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)
Stars: ✭ 1,056 (+623.29%)
Vuln Web AppsA curated list of vulnerable web applications.
Stars: ✭ 128 (-12.33%)
IvaIVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to search for CVEs related to a software product.
Stars: ✭ 49 (-66.44%)
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (-29.45%)
Pentest Tools FrameworkPentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities
Stars: ✭ 48 (-67.12%)
SdwannewhopeSD-WAN security and insecurity
Stars: ✭ 141 (-3.42%)
SwurgParse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
Stars: ✭ 94 (-35.62%)
Log Requests To SqliteBURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
Stars: ✭ 44 (-69.86%)
Burp ExporterExporter is a Burp Suite extension to copy a request to the clipboard as multiple programming languages functions.
Stars: ✭ 122 (-16.44%)
RegslscanA tool for scanning registery key permissions. Find where non-admins can create symbolic links.
Stars: ✭ 39 (-73.29%)
CstcCSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Stars: ✭ 91 (-37.67%)
NettackerAutomated Penetration Testing Framework
Stars: ✭ 982 (+572.6%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-1.37%)
U2cUnicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】
Stars: ✭ 83 (-43.15%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+480.14%)
XssconXSSCon: Simple XSS Scanner tool
Stars: ✭ 118 (-19.18%)
TrivyScanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+6525.34%)
AngelswordPython3编写的CMS漏洞检测框架
Stars: ✭ 1,223 (+737.67%)
Jsonpjsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.
Stars: ✭ 131 (-10.27%)
WhourTool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.
Stars: ✭ 18 (-87.67%)
PocoA cross-engine test automation framework based on UI inspection
Stars: ✭ 1,177 (+706.16%)
VfeedThe Correlated CVE Vulnerability And Threat Intelligence Database API
Stars: ✭ 826 (+465.75%)
ArissploitArissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
Stars: ✭ 114 (-21.92%)
VulsAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Stars: ✭ 8,844 (+5957.53%)
DetexploitOSS Vulnerability Scanner for Windows Platform
Stars: ✭ 146 (+0%)
GvmdGreenbone Vulnerability Manager
Stars: ✭ 140 (-4.11%)
Owasp OrizonOwasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Stars: ✭ 130 (-10.96%)
Auto.jsA UiAutomator on android, does not need root access(安卓平台上的JavaScript自动化工具)
Stars: ✭ 10,882 (+7353.42%)
LynisLynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
Stars: ✭ 9,137 (+6158.22%)