aa-policy-validatorValidate all your Customer IAM Policies against AWS Access Analyzer - Policy Validation
Stars: ✭ 42 (-88.92%)
AstraAstra is a tool to find URLs and secrets inside a webpage/files
Stars: ✭ 187 (-50.66%)
rustpadMulti-threaded Padding Oracle attacks against any service. Written in Rust.
Stars: ✭ 75 (-80.21%)
sgCheckupsgCheckup generates nmap output based on scanning your AWS Security Groups for unexpected open ports.
Stars: ✭ 77 (-79.68%)
honeykuA Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).
Stars: ✭ 56 (-85.22%)
vimana-frameworkVimana is an experimental security framework that aims to provide resources for auditing Python web applications.
Stars: ✭ 47 (-87.6%)
juumla🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.
Stars: ✭ 107 (-71.77%)
InfoPhishInfoPath Phishing Repo Resource
Stars: ✭ 68 (-82.06%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: ✭ 137 (-63.85%)
toolkitThe essential toolkit for reversing, malware analysis, and cracking
Stars: ✭ 176 (-53.56%)
diwaA Deliberately Insecure Web Application
Stars: ✭ 32 (-91.56%)
restincodeA memorial site for Hackers and Infosec people who have passed
Stars: ✭ 62 (-83.64%)
goverviewgoverview - Get an overview of the list of URLs
Stars: ✭ 93 (-75.46%)
tutorialsAdditional Resources For Securing The Stack Tutorials
Stars: ✭ 36 (-90.5%)
qvm-create-windows-qubeSpin up new Windows qubes quickly, effortlessly and securely on Qubes OS
Stars: ✭ 267 (-29.55%)
rawsec-cybersecurity-inventoryAn inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
Stars: ✭ 153 (-59.63%)
introspectorA schema and set of tools for using SQL to query cloud infrastructure.
Stars: ✭ 61 (-83.91%)
pyetiPython bindings for Yeti's API
Stars: ✭ 15 (-96.04%)
DcRatA simple remote tool in C#.
Stars: ✭ 709 (+87.07%)
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (-83.91%)
nozzlrNozzlr is a bruteforce framework, trully modular and script-friendly
Stars: ✭ 60 (-84.17%)
github-watchmanMonitoring GitHub for sensitive data shared publicly
Stars: ✭ 60 (-84.17%)
doraFind exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Stars: ✭ 229 (-39.58%)
maalikFeature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-80.21%)
cpu-load-side-channelSide-channel file transfer between independent VMs or processes executed on the same physical host.
Stars: ✭ 45 (-88.13%)
sx🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (+234.3%)
termux-snippetsAn integrated tool and a collection of snippets which helps in the various aspects of the terminal.
Stars: ✭ 28 (-92.61%)
kdtCLI to interact with Kondukto
Stars: ✭ 18 (-95.25%)
EDRHuntScan installed EDRs and AVs on Windows
Stars: ✭ 406 (+7.12%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-89.97%)
fuzzmostall manner of wordlists
Stars: ✭ 23 (-93.93%)
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (-45.12%)
evtx-hunterevtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
Stars: ✭ 122 (-67.81%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+880.21%)
ronin-supportA support library for Ronin. Like activesupport, but for hacking!
Stars: ✭ 23 (-93.93%)
mobileAuditDjango application that performs SAST and Malware Analysis for Android APKs
Stars: ✭ 140 (-63.06%)
IkyOSINT Project
Stars: ✭ 203 (-46.44%)
KubestrikerA Blazing fast Security Auditing tool for Kubernetes
Stars: ✭ 213 (-43.8%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-66.75%)
AutosqliAn automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
Stars: ✭ 222 (-41.42%)
ArgosThis script will automatically set up an OSINT workstation starting from a Ubuntu OS.
Stars: ✭ 73 (-80.74%)
RoninRonin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits or Payloads, Scanners, etc, via Repositories.
Stars: ✭ 220 (-41.95%)
wildpwnunix wildcard attacks
Stars: ✭ 119 (-68.6%)
Can I Take Over Xyz"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Stars: ✭ 2,808 (+640.9%)
sandboxed-fsSandboxed Wrapper for Node.js File System API
Stars: ✭ 41 (-89.18%)
MurMurHashThis little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.
Stars: ✭ 79 (-79.16%)
S3ScanScript to spider a website and find publicly open S3 buckets
Stars: ✭ 21 (-94.46%)
fingerprintjs-androidSwiss army knife for identifying and fingerprinting Android devices.
Stars: ✭ 336 (-11.35%)
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (-36.15%)
giggerGit folder digger, I'm sure it's worthwhile stuff.
Stars: ✭ 39 (-89.71%)