Awesome OscpA curated list of awesome OSCP resources
Stars: ✭ 804 (+341.76%)
Hacker Roadmap📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.
Stars: ✭ 7,752 (+4159.34%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+392.86%)
OssaOpen-Source Security Architecture | 开源安全架构
Stars: ✭ 796 (+337.36%)
ChangemeA default credential scanner.
Stars: ✭ 928 (+409.89%)
GogitdumperDump exposed HTTP .git fast
Stars: ✭ 27 (-85.16%)
BroxyAn HTTP/HTTPS intercept proxy written in Go.
Stars: ✭ 912 (+401.1%)
PxenumA shell script that automatically performs a series of *NIX enumeration tasks.
Stars: ✭ 30 (-83.52%)
Remote Desktop CachingThis tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.
Stars: ✭ 171 (-6.04%)
Babysploit👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍
Stars: ✭ 883 (+385.16%)
Badusb botnet👥😈 Infect a pc with badusb and establish a connection through telegram.
Stars: ✭ 32 (-82.42%)
T14m4tAutomated brute-forcing attack tool.
Stars: ✭ 160 (-12.09%)
BrutexAutomatically brute force all services running on a target.
Stars: ✭ 974 (+435.16%)
Social AnalyzerAPI, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)
Stars: ✭ 8,449 (+4542.31%)
CheckmyhttpsWe propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).
Stars: ✭ 35 (-80.77%)
Zeebsploitweb scanner - exploitation - information gathering
Stars: ✭ 159 (-12.64%)
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (-6.59%)
HardentheworldHarden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.
Stars: ✭ 158 (-13.19%)
Swift KeyloggerKeylogger for mac written in Swift using HID
Stars: ✭ 995 (+446.7%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (+440.11%)
Eyes👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-79.12%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+435.16%)
KeyloggerA simple keylogger for Windows, Linux and Mac
Stars: ✭ 1,007 (+453.3%)
Cfw2ofw HelperProviding aid in converting video games.
Stars: ✭ 44 (-75.82%)
Kubernetes GoatKubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
Stars: ✭ 868 (+376.92%)
Pentest ChainsawScrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product
Stars: ✭ 36 (-80.22%)
Legal Bug Bounty#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.
Stars: ✭ 42 (-76.92%)
NebulousadNebulousAD automated credential auditing tool.
Stars: ✭ 158 (-13.19%)
SsrfmapSimple Server Side Request Forgery services enumeration tool.
Stars: ✭ 50 (-72.53%)
Git ScannerA tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Stars: ✭ 157 (-13.74%)
Bug Bounty ResponsesA collection of response templates for invalid bug bounty reports.
Stars: ✭ 46 (-74.73%)
Pythempentest framework
Stars: ✭ 1,060 (+482.42%)
Attiny85RubberDucky like payloads for DigiSpark Attiny85
Stars: ✭ 169 (-7.14%)
SlowlorisAsynchronous Python implementation of SlowLoris DoS attack
Stars: ✭ 51 (-71.98%)
Pentest⛔️ offsec batteries included
Stars: ✭ 1,063 (+484.07%)
Jwt Hack🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
Stars: ✭ 172 (-5.49%)
OscpMy OSCP journey
Stars: ✭ 50 (-72.53%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-71.43%)
Wifi PassviewAn open source batch script based WiFi Passview for Windows!
Stars: ✭ 157 (-13.74%)
Audit scriptsScripts to gather system configuration information for offline/remote auditing
Stars: ✭ 55 (-69.78%)
Rfd CheckerRFD Checker - security CLI tool to test Reflected File Download issues
Stars: ✭ 56 (-69.23%)
BbreconPython library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (-7.14%)
Kill RouterFerramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.
Stars: ✭ 57 (-68.68%)
Instagram HackerThis is an advanced script for Instagram bruteforce attacks. WARNING THIS IS A REAL TOOL!
Stars: ✭ 156 (-14.29%)
LyricpassPassword wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.
Stars: ✭ 58 (-68.13%)
Di.we.hRepositório com conteúdo sobre web hacking em português
Stars: ✭ 156 (-14.29%)
ShuffleWebShell Backdoor Framework
Stars: ✭ 11 (-93.96%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (+461.54%)
Project TauroA Router WiFi key recovery/cracking tool with a twist.
Stars: ✭ 52 (-71.43%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (+492.86%)
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
Stars: ✭ 2,750 (+1410.99%)
XshockXSHOCK Shellshock Exploit
Stars: ✭ 65 (-64.29%)
ReconcatA small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.
Stars: ✭ 66 (-63.74%)
Chaos🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.
Stars: ✭ 1,168 (+541.76%)