UdorkuDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.
Stars: ✭ 326 (-87.21%)
Awesome Osint😱 A curated list of amazingly awesome OSINT
Stars: ✭ 7,830 (+207.3%)
Asset Scanasset-scan是一款适用甲方企业的外网资产周期性扫描监控系统
Stars: ✭ 149 (-94.15%)
MonitorizerMultithreaded monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools with support for Acunetix
Stars: ✭ 110 (-95.68%)
TrapePeople tracker on the Internet: OSINT analysis and research tool by Jose Pino
Stars: ✭ 6,753 (+165.03%)
HamburglarHamburglar -- collect useful information from urls, directories, and files
Stars: ✭ 321 (-87.4%)
Mitm Scripts🔄 A collection of mitmproxy inline scripts
Stars: ✭ 109 (-95.72%)
Dumpsterfire"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (-69.58%)
OscprepoA list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
Stars: ✭ 1,916 (-24.8%)
EvillimiterTool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (-70.02%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (-94.27%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-95.72%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (-69.9%)
ConptyshellConPtyShell - Fully Interactive Reverse Shell for Windows
Stars: ✭ 309 (-87.87%)
Dr0p1t FrameworkA framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks
Stars: ✭ 1,132 (-55.57%)
SinglefileWeb Extension for Firefox/Chrome/MS Edge and CLI tool to save a faithful copy of an entire web page in a single HTML file
Stars: ✭ 4,417 (+73.35%)
StardoxGithub stargazers information gathering tool
Stars: ✭ 130 (-94.9%)
QuackQuack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.
Stars: ✭ 305 (-88.03%)
NaabuA fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
Stars: ✭ 1,121 (-56%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (-70.17%)
AlephSearch and browse documents and data; find the people and companies you look for.
Stars: ✭ 1,539 (-39.6%)
AllaboutbugbountyAll about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (-70.25%)
Dfw1n OsintAustralian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers
Stars: ✭ 63 (-97.53%)
Teamviewer permissions hook v1A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.
Stars: ✭ 297 (-88.34%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-94.9%)
Dnscat2 PowershellA Powershell client for dnscat2, an encrypted DNS command and control tool.
Stars: ✭ 295 (-88.42%)
ShhgitAh shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
Stars: ✭ 3,316 (+30.14%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (-92.19%)
PywerviewA (partial) Python rewriting of PowerSploit's PowerView
Stars: ✭ 292 (-88.54%)
Fwdsh3llForward shell generation framework
Stars: ✭ 62 (-97.57%)
Nwatch🔍 Tool for - Host Discovery, Port Scanning and Operating System Fingerprinting
Stars: ✭ 127 (-95.02%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (-94.19%)
CatnipCat-Nip Automated Basic Pentest Tool - Designed For Kali Linux
Stars: ✭ 108 (-95.76%)
OpenscapNIST Certified SCAP 1.2 toolkit
Stars: ✭ 750 (-70.57%)
MeerkatA collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
Stars: ✭ 284 (-88.85%)
Zeebsploitweb scanner - exploitation - information gathering
Stars: ✭ 159 (-93.76%)
FuxiPenetration Testing Platform
Stars: ✭ 1,103 (-56.71%)
LegionAutomatic Enumeration Tool based in Open Source tools
Stars: ✭ 280 (-89.01%)
Netstalking OsintКоллекция материалов по OSINT для нетсталкинга
Stars: ✭ 127 (-95.02%)
Sane Scan PdfSane command-line scan-to-pdf script on Linux with OCR and deskew support
Stars: ✭ 58 (-97.72%)
Anubis🔓Subdomain enumeration and information gathering tool
Stars: ✭ 722 (-71.66%)
Information Security TasksThis repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Stars: ✭ 108 (-95.76%)
Awesome Web Security🐶 A curated list of Web Security materials and resources.
Stars: ✭ 6,623 (+159.93%)
Esp8266 deautherAffordable WiFi hacking platform for testing and learning
Stars: ✭ 9,312 (+265.46%)
Penetration testing poc渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+51.41%)
Awesome Shodan Queries🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Stars: ✭ 2,758 (+8.24%)
HtshellsSelf contained htaccess shells and attacks
Stars: ✭ 708 (-72.21%)
Leaky RepoBenchmarking repo for secrets scanning
Stars: ✭ 149 (-94.15%)
ArchivefuzzHunt down the secrets from the WebArchives for Fun and Profit
Stars: ✭ 108 (-95.76%)
Zeus ScannerAdvanced reconnaissance utility
Stars: ✭ 706 (-72.29%)
SocialpwnedSocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.
Stars: ✭ 104 (-95.92%)
BashfuscatorA fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
Stars: ✭ 690 (-72.92%)
FuseA penetration testing tool for finding file upload bugs (NDSS 2020)
Stars: ✭ 147 (-94.23%)
Awesome HackingA collection of various awesome lists for hackers, pentesters and security researchers
Stars: ✭ 48,038 (+1785.32%)
AutordpwnThe Shadow Attack Framework
Stars: ✭ 688 (-73%)
MorpheusMorpheus - Automating Ettercap TCP/IP (MITM-hijacking Tool)
Stars: ✭ 685 (-73.12%)