TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (-16.98%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-77.99%)
HabuHacking Toolkit
Stars: ✭ 635 (+299.37%)
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (-35.22%)
In Spectre MeltdownThis tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
Stars: ✭ 86 (-45.91%)
reverieAutomated Pentest Tools Designed For Parrot Linux
Stars: ✭ 77 (-51.57%)
goLazagneGo library for credentials recovery
Stars: ✭ 177 (+11.32%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (+198.11%)
EvillimiterTool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (+380.5%)
Msploitego Pentesting suite for Maltego based on data in a Metasploit database
Stars: ✭ 124 (-22.01%)
Eyes.shLet's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"
Stars: ✭ 89 (-44.03%)
WebkillerTool Information Gathering Write By Python.
Stars: ✭ 300 (+88.68%)
Eyes👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-76.1%)
Pwncatpwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Stars: ✭ 904 (+468.55%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+84.91%)
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (-11.95%)
LiteOTPMulti OTP Spam Amp/Paralell threads
Stars: ✭ 50 (-68.55%)
Mitm Scripts🔄 A collection of mitmproxy inline scripts
Stars: ✭ 109 (-31.45%)
Punk.pyunix SSH post-exploitation 1337 tool
Stars: ✭ 107 (-32.7%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (+183.02%)
Lockdoor Framework🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
Stars: ✭ 677 (+325.79%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-18.24%)
One Lin3rGives you one-liners that aids in penetration testing operations, privilege escalation and more
Stars: ✭ 1,259 (+691.82%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+2979.87%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (-6.92%)
KaboomA tool to automate penetration tests
Stars: ✭ 322 (+102.52%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+4457.23%)
Badkarmanetwork reconnaissance toolkit
Stars: ✭ 353 (+122.01%)
FuxiPenetration Testing Platform
Stars: ✭ 1,103 (+593.71%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+2032.7%)
PasshuntPasshunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
Stars: ✭ 961 (+504.4%)
LscriptThe LAZY script will make your life easier, and of course faster.
Stars: ✭ 3,056 (+1822.01%)
Darkspiritz🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (+37.74%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-84.28%)
TigersharkBilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.
Stars: ✭ 212 (+33.33%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-82.39%)
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (-25.16%)
SubscraperSubdomain enumeration through various techniques
Stars: ✭ 265 (+66.67%)
Babysploit👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍
Stars: ✭ 883 (+455.35%)
ErodirA fast web directory/file enumeration tool written in Rust
Stars: ✭ 94 (-40.88%)
PakuriPenetration test Achieve Knowledge Unite Rapid Interface
Stars: ✭ 125 (-21.38%)
Struts2 check一个用于识别目标网站是否采用Struts2框架开发的工具demo
Stars: ✭ 124 (-22.01%)
Black WidowGUI based offensive penetration testing tool (Open Source)
Stars: ✭ 124 (-22.01%)
FuseA penetration testing tool for finding file upload bugs (NDSS 2020)
Stars: ✭ 147 (-7.55%)
Sec ToolsDocker images for infosec tools
Stars: ✭ 135 (-15.09%)
M3m0M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 124 (-22.01%)
TelekillerA Tools Session Hijacking And Stealer Local Passcode Telegram Windows
Stars: ✭ 122 (-23.27%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+1047.17%)
Ssrf TestingSSRF (Server Side Request Forgery) testing resources
Stars: ✭ 1,718 (+980.5%)
RatelRAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Stars: ✭ 121 (-23.9%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (-5.66%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-9.43%)
Information SecurityA place where I can create, collect and share tooling, resources and knowledge about information security.
Stars: ✭ 135 (-15.09%)
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120 (-24.53%)
SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (-27.04%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1112.58%)