PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+15570.95%)
AzureAD Autologon BruteBrute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/
Stars: ✭ 90 (-57.14%)
FeroxbusterA fast, simple, recursive content discovery tool written in Rust.
Stars: ✭ 1,314 (+525.71%)
PyrdpRDP man-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
Stars: ✭ 567 (+170%)
uberscanSecurity program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.
Stars: ✭ 31 (-85.24%)
tomcter😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.
Stars: ✭ 18 (-91.43%)
Spray365Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.
Stars: ✭ 233 (+10.95%)
GetPwdIt's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)
Stars: ✭ 46 (-78.1%)
Hackers Tool KitIts a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram
Stars: ✭ 211 (+0.48%)
BlowholeDocker auditing and enumeration script.
Stars: ✭ 21 (-90%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+134.29%)
OpendoorOWASP WEB Directory Scanner
Stars: ✭ 586 (+179.05%)
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
Stars: ✭ 144 (-31.43%)
SsrfmapAutomatic SSRF fuzzer and exploitation tool
Stars: ✭ 1,344 (+540%)
ComPPCompany Passwords Profiler (aka ComPP) helps making a bruteforce wordlist for a targeted company.
Stars: ✭ 44 (-79.05%)
CloudfailUtilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Stars: ✭ 1,239 (+490%)
GraphqlmapGraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.
Stars: ✭ 434 (+106.67%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (+114.29%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+3350.48%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-70.95%)
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
Stars: ✭ 133 (-36.67%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+818.1%)
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Stars: ✭ 163 (-22.38%)
Awesome VulnerableA curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
Stars: ✭ 133 (-36.67%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-15.71%)
LegionAutomatic Enumeration Tool based in Open Source tools
Stars: ✭ 280 (+33.33%)
Enum4linux NgA next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Stars: ✭ 349 (+66.19%)
PowEnumExecutes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.
Stars: ✭ 62 (-70.48%)
Web BrutatorFast Modular Web Interfaces Bruteforcer
Stars: ✭ 97 (-53.81%)
DirsearchA Go implementation of dirsearch.
Stars: ✭ 164 (-21.9%)
Phpenums🔩 Provides enumerations for PHP & frameworks integrations
Stars: ✭ 194 (-7.62%)
Yii2Yii 2: The Fast, Secure and Professional PHP Framework
Stars: ✭ 13,852 (+6496.19%)
UmbracodocsThe official Umbraco Documentation
Stars: ✭ 207 (-1.43%)
TauriBuild smaller, faster, and more secure desktop applications with a web frontend.
Stars: ✭ 25,383 (+11987.14%)
ShieldsConcise, consistent, and legible badges in SVG and raster format
Stars: ✭ 15,716 (+7383.81%)
Org CliplinkInsert org-mode links from clipboard
Stars: ✭ 207 (-1.43%)
Netlify CmsA Git-based CMS for Static Site Generators
Stars: ✭ 14,776 (+6936.19%)
Grpc GoThe Go language implementation of gRPC. HTTP/2 based RPC
Stars: ✭ 15,042 (+7062.86%)
PreserverPreserver is desktop notes organiser built on electron, angular2, pouchDB
Stars: ✭ 207 (-1.43%)
Redoc📘 OpenAPI/Swagger-generated API Reference Documentation
Stars: ✭ 15,935 (+7488.1%)
Vim GoGo development plugin for Vim
Stars: ✭ 14,085 (+6607.14%)
CompilerPawn compiler for SA-MP with bug fixes and new features - runs on Windows, Linux, macOS
Stars: ✭ 209 (-0.48%)
Oq EngineOpenQuake's Engine for Seismic Hazard and Risk Analysis
Stars: ✭ 207 (-1.43%)
WireflowWireflow - user flow chart real-time collaborative tool
Stars: ✭ 2,788 (+1227.62%)
Android📱 Nextcloud Android app
Stars: ✭ 2,669 (+1170.95%)
OpenfireOpenfire is a real time collaboration (RTC) server licensed under the Open Source Apache License. It uses the only widely adopted open protocol for instant messaging, XMPP (also called Jabber). Openfire is incredibly easy to setup and administer, but offers rock-solid security and performance.
Stars: ✭ 2,423 (+1053.81%)
Ladon大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+1286.19%)
UnderexpressA free, responsive, ready to use website ui kit, built with bootstrap 4.
Stars: ✭ 205 (-2.38%)
Cordova LibApache Cordova Tooling Library
Stars: ✭ 208 (-0.95%)
PdnsPowerDNS Authoritative, PowerDNS Recursor, dnsdist
Stars: ✭ 2,575 (+1126.19%)
Lime PackagesOpenWrt packages composing LibreMesh meta-firmware for wireless mesh networking
Stars: ✭ 204 (-2.86%)
Percona DockerCollection of Dockerfiles for Percona sofware. See individual directories for more details.
Stars: ✭ 204 (-2.86%)
Ru Test AssignmentsТестовые задания для самостоятельного выполнения от разных it компаний
Stars: ✭ 2,926 (+1293.33%)