SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (+48.72%)
NetcatNetCat for Windows
Stars: ✭ 463 (+493.59%)
Cc.pyExtracting URLs of a specific target based on the results of "commoncrawl.org"
Stars: ✭ 250 (+220.51%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (+48.72%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (+478.21%)
SocialfishPhishing Tool & Information Collector
Stars: ✭ 2,522 (+3133.33%)
ExploHuman and machine readable web vulnerability testing format
Stars: ✭ 114 (+46.15%)
FfufFast web fuzzer written in Go
Stars: ✭ 5,687 (+7191.03%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (+162.82%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (+457.69%)
Burp Send ToAdds a customizable "Send to..."-context-menu to your BurpSuite.
Stars: ✭ 114 (+46.15%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+447.44%)
SlurpEvaluate the security of S3 buckets
Stars: ✭ 183 (+134.62%)
CovertutilsA framework for Backdoor development!
Stars: ✭ 424 (+443.59%)
Linux Smart EnumerationLinux enumeration tool for pentesting and CTFs with verbosity levels
Stars: ✭ 1,956 (+2407.69%)
EhtoolsWi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.
Stars: ✭ 422 (+441.03%)
Physmem2profitPhysmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely
Stars: ✭ 244 (+212.82%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (+433.33%)
BellaBella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻
Stars: ✭ 112 (+43.59%)
ApkurlgrepExtract endpoints from APK files
Stars: ✭ 405 (+419.23%)
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
Stars: ✭ 2,750 (+3425.64%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (+416.67%)
CtfrAbusing Certificate Transparency logs for getting HTTPS websites subdomains.
Stars: ✭ 1,535 (+1867.95%)
Top25 ParameterFor basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Stars: ✭ 388 (+397.44%)
avainA Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
Stars: ✭ 56 (-28.21%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (+401.28%)
Information Security TasksThis repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions
Stars: ✭ 108 (+38.46%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (+388.46%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (+34.62%)
RaasnetOpen-Source Ransomware As A Service for Linux, MacOS and Windows
Stars: ✭ 371 (+375.64%)
Scout🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
Stars: ✭ 241 (+208.97%)
Rustscan🤖 The Modern Port Scanner 🤖
Stars: ✭ 5,218 (+6589.74%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (+33.33%)
RdpasssprayPython3 tool to perform password spraying using RDP
Stars: ✭ 368 (+371.79%)
RidrelayEnumerate usernames on a domain where you have no creds by using SMB Relay with low priv.
Stars: ✭ 359 (+360.26%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (+355.13%)
offensive-docker-vpsCreate a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.
Stars: ✭ 66 (-15.38%)
Vaultswiss army knife for hackers
Stars: ✭ 346 (+343.59%)
Smtptestersmall python3 tool to check common vulnerabilities in SMTP servers
Stars: ✭ 102 (+30.77%)
Sqli HunterSQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
Stars: ✭ 340 (+335.9%)
Xerrorfully automated pentesting tool
Stars: ✭ 173 (+121.79%)
TtpsTactics, Techniques, and Procedures
Stars: ✭ 335 (+329.49%)
Burp ParamalyzerParamalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
Stars: ✭ 102 (+30.77%)
CitadelCollection of pentesting scripts
Stars: ✭ 333 (+326.92%)
CommixAutomated All-in-One OS Command Injection Exploitation Tool.
Stars: ✭ 3,016 (+3766.67%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+1648.72%)
QuickScanPort scanning and domain utility.
Stars: ✭ 26 (-66.67%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (+10.26%)
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
Stars: ✭ 22 (-71.79%)
SimpleKeyloggerSimple Keylogger with smtp to send emails on your account using python works on linux and Windows
Stars: ✭ 32 (-58.97%)
Evil SsdpSpoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
Stars: ✭ 204 (+161.54%)
Awesome CsirtAwesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Stars: ✭ 132 (+69.23%)
Pwncatpwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Stars: ✭ 904 (+1058.97%)