cassler🕷️ 🕷️ 🕷️ Validate SSL Certificates around web
Stars: ✭ 55 (-35.29%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+2045.88%)
Nimscan🚀 Fast Port Scanner 🚀
Stars: ✭ 134 (+57.65%)
Ladon大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+3324.71%)
HellraiserVulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Stars: ✭ 413 (+385.88%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+498.82%)
RecsechRecsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (+103.53%)
Scanners BoxA powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Stars: ✭ 5,590 (+6476.47%)
Recon PipelineAn automated target reconnaissance pipeline.
Stars: ✭ 278 (+227.06%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (+323.53%)
LadongoLadon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
Stars: ✭ 366 (+330.59%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+955.29%)
CertaintyAutomated cacert.pem management for PHP projects
Stars: ✭ 255 (+200%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+811.76%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+2168.24%)
RmiscoutRMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Stars: ✭ 296 (+248.24%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+4021.18%)
Appinfoscanner一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (+398.82%)
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+3945.88%)
docker-testsslhttp://testssl.sh/ in a tiny docker container
Stars: ✭ 19 (-77.65%)
OpenVAS-DockerA Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
Stars: ✭ 16 (-81.18%)
RaptorWeb-based Source Code Vulnerability Scanner
Stars: ✭ 314 (+269.41%)
Certificates🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Stars: ✭ 3,693 (+4244.71%)
Jok3rJok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Stars: ✭ 645 (+658.82%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (+802.35%)
Cli🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
Stars: ✭ 2,151 (+2430.59%)
JaelesThe Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (+1162.35%)
EvilscanNodeJS Simple Network Scanner
Stars: ✭ 428 (+403.53%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-38.82%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (+1169.41%)
Radio HackboxPoC tool to demonstrate vulnerabilities in wireless input devices
Stars: ✭ 74 (-12.94%)
Zio Tls Http100% non-blocking, Java NIO only( inspired by zio-nio) , JSON HTTP server based on Scala ZIO library. Everything including TLS encryption modeled as ZIO effects, convenient route DSL similar to https4s, up to 30K TPS local JSON transaction with 25 threads on 6 cores(i7) with ZIO fibers.
Stars: ✭ 71 (-16.47%)
SenvFriends don't let friends leak secrets on their terminal window 🙈
Stars: ✭ 71 (-16.47%)
Sysmon ModularA repository of sysmon configuration modules
Stars: ✭ 1,229 (+1345.88%)
Docker OpenldapDocker OpenLDAP Container w/TLS & Replication Support S6 Overlay, and Zabbix Monitoring based on Alpine
Stars: ✭ 74 (-12.94%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+1269.41%)
Intrigue IdentApplication and Service Fingerprinting
Stars: ✭ 70 (-17.65%)
MerecatSmall and made-easy HTTP/HTTPS server based on Jef Poskanzer's thttpd
Stars: ✭ 69 (-18.82%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+1334.12%)
Hpkpgolang hpkp client library
Stars: ✭ 73 (-14.12%)
AppmonDocumentation:
Stars: ✭ 1,157 (+1261.18%)
Nrf24 PlaysetSoftware tools for Nordic Semiconductor nRF24-based devices like wireless keyboards, mice, and presenters
Stars: ✭ 73 (-14.12%)
BabasslA Brisk and Better Assured Cryptographic Toolkit
Stars: ✭ 68 (-20%)
PgenCommand-line passphrase generator
Stars: ✭ 68 (-20%)
Tlstunnel LwtTLS tunnel -- an alternative to stud / stunnel
Stars: ✭ 79 (-7.06%)
Nitroshare DesktopNetwork file transfer application for Windows, OS X, & Linux
Stars: ✭ 1,150 (+1252.94%)
PillagerPillage filesystems for sensitive information with Go.
Stars: ✭ 64 (-24.71%)
Ioc ExplorerExplore Indicators of Compromise Automatically
Stars: ✭ 73 (-14.12%)
TlslibrarySimple TlsLibrary written in Kotlin - Provides DSL for creating TLS connections
Stars: ✭ 67 (-21.18%)
Typo3scanScans TYPO3 extensions for usage of deprecated and or changed code
Stars: ✭ 83 (-2.35%)
CloudfailUtilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Stars: ✭ 1,239 (+1357.65%)
Network Threats TaxonomyMachine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies
Stars: ✭ 79 (-7.06%)
DeadtrapAn OSINT tool to gather information about the real owner of a phone number
Stars: ✭ 73 (-14.12%)