InqlInQL - A Burp Extension for GraphQL Security Testing
Stars: ✭ 715 (+313.29%)
Put2winScript to automate PUT HTTP method exploitation to get shell
Stars: ✭ 96 (-44.51%)
volana🌒 Shell command obfuscation to avoid detection systems
Stars: ✭ 38 (-78.03%)
urlbruteDirectory/Subdomain scanner developed in GoLang.
Stars: ✭ 37 (-78.61%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+1709.83%)
FlashRoute🚀 Takes minutes to explore the topology of all routable /24 prefixes in IPv4 address space. Now supports IPv6 scan!
Stars: ✭ 26 (-84.97%)
AutordpwnThe Shadow Attack Framework
Stars: ✭ 688 (+297.69%)
Win PortfwdPowershell script to setup windows port forwarding using native netsh client
Stars: ✭ 95 (-45.09%)
KeyloggerA simple keylogger for Windows, Linux and Mac
Stars: ✭ 1,007 (+482.08%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+2047.4%)
GorsairGorsair hacks its way into remote docker containers that expose their APIs
Stars: ✭ 678 (+291.91%)
Okadminfinder3[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻
Stars: ✭ 279 (+61.27%)
crackena fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust
Stars: ✭ 192 (+10.98%)
framestackTools, Frameworks & Libraries to help you build your projects ✨
Stars: ✭ 27 (-84.39%)
Burp-AppSecFlowThe extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, because he can now send vulnerabilities directly from Burp to the platform.
Stars: ✭ 36 (-79.19%)
Jasmin-RansomwareJasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Stars: ✭ 84 (-51.45%)
Poc T渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Stars: ✭ 1,722 (+895.38%)
WpforceWordpress Attack Suite
Stars: ✭ 633 (+265.9%)
HackbrowserdataDecrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Stars: ✭ 3,864 (+2133.53%)
Foolavcfoolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV
Stars: ✭ 93 (-46.24%)
PowerladonLadon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC
Stars: ✭ 39 (-77.46%)
PerfusionExploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Stars: ✭ 272 (+57.23%)
xmlrpc-bruteforcerMulti-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
Stars: ✭ 71 (-58.96%)
Powershell RatPython based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.
Stars: ✭ 636 (+267.63%)
DagonAdvanced Hash Manipulation
Stars: ✭ 155 (-10.4%)
EvilosxAn evil RAT (Remote Administration Tool) for macOS / OS X.
Stars: ✭ 1,826 (+955.49%)
Mitm Scripts🔄 A collection of mitmproxy inline scripts
Stars: ✭ 109 (-36.99%)
PhishapiComprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!
Stars: ✭ 272 (+57.23%)
CripsIP Tools To quickly get information about IP Address's, Web Pages and DNS records.
Stars: ✭ 272 (+57.23%)
KnifeA burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
Stars: ✭ 626 (+261.85%)
CrackerjackMultiprocessing brute-force script written in Python 3
Stars: ✭ 22 (-87.28%)
MsdatMSDAT: Microsoft SQL Database Attacking Tool
Stars: ✭ 621 (+258.96%)
DnstrickerA simple dns resolver of dns-record and web-record log server for pentesting
Stars: ✭ 128 (-26.01%)
wifibangwifi attacks suite
Stars: ✭ 56 (-67.63%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (+250.87%)
flarequenchBurp Suite plugin that adds additional checks to the passive scanner to reveal the origin IP(s) of Cloudflare-protected web applications.
Stars: ✭ 44 (-74.57%)
GohacktoolsHacker tools on Go (Golang)
Stars: ✭ 1,303 (+653.18%)
empty-dirCheck if a directory is empty.
Stars: ✭ 19 (-89.02%)
HashviewA web front-end for password cracking and analytics
Stars: ✭ 601 (+247.4%)
CrackmapextremeFor all your network pentesting needs
Stars: ✭ 148 (-14.45%)
OpendoorOWASP WEB Directory Scanner
Stars: ✭ 586 (+238.73%)
NettackerAutomated Penetration Testing Framework
Stars: ✭ 982 (+467.63%)
Commodity Injection SignaturesCommodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267 (+54.34%)
CstcCSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef
Stars: ✭ 91 (-47.4%)
CatnipCat-Nip Automated Basic Pentest Tool - Designed For Kali Linux
Stars: ✭ 108 (-37.57%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (+468.21%)
SubscraperSubdomain enumeration through various techniques
Stars: ✭ 265 (+53.18%)
CopyGo copy directory recursively
Stars: ✭ 264 (+52.6%)
Esp Rfid ToolA tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed directly into an existing installation. Provides access to a web based interface using WiFi in AP or Client mode. Will work with nearly all devices that contain a standard 5V Wiegand interface. Primary target group is 26-37bit HID Cards. Similar to the Tastic RFID Thief, Blekey, and ESPKey.
Stars: ✭ 262 (+51.45%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (-22.54%)
EmbedosEmbedOS - Embedded security testing virtual machine
Stars: ✭ 108 (-37.57%)
UptuxLinux privilege escalation checks (systemd, dbus, socket fun, etc)
Stars: ✭ 260 (+50.29%)