Evil SsdpSpoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
Stars: ✭ 204 (-53.95%)
RspetRSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
Stars: ✭ 251 (-43.34%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-9.03%)
Eyes👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-91.42%)
EvillimiterTool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (+72.46%)
RsfThe Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.
Stars: ✭ 76 (-82.84%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (+169.53%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-6.09%)
Mongoaudit🔥 A powerful MongoDB auditing and pentesting tool 🔥
Stars: ✭ 1,174 (+165.01%)
pentest-reportsCollection of penetration test reports and pentest report templates. Published by the the best security companies in the world.
Stars: ✭ 111 (-74.94%)
Pentesting toolkit🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
Stars: ✭ 1,268 (+186.23%)
S3ScanScript to spider a website and find publicly open S3 buckets
Stars: ✭ 21 (-95.26%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-71.56%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (-76.3%)
Hacker ContainerContainer with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters
Stars: ✭ 105 (-76.3%)
SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (-73.81%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (-76.52%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (-71.78%)
Spaces FinderA tool to hunt for publicly accessible DigitalOcean Spaces
Stars: ✭ 122 (-72.46%)
QuiverQuiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-68.4%)
SilentbridgeSilentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.
Stars: ✭ 136 (-69.3%)
XssmapXSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
Stars: ✭ 134 (-69.75%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+711.74%)
LscriptThe LAZY script will make your life easier, and of course faster.
Stars: ✭ 3,056 (+589.84%)
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (-53.05%)
ggtfobinsGet GTFOBins info about a given exploit from the command line
Stars: ✭ 27 (-93.91%)
vsauditVOIP Security Audit Framework
Stars: ✭ 104 (-76.52%)
KaboomA tool to automate penetration tests
Stars: ✭ 322 (-27.31%)
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-56.43%)
HawkeyeHawkeye filesystem analysis tool
Stars: ✭ 202 (-54.4%)
WebmapA Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing
Stars: ✭ 188 (-57.56%)
Capsulecorp PentestVagrant VirtualBox environment for conducting an internal network penetration test
Stars: ✭ 214 (-51.69%)
LnkupGenerates malicious LNK file payloads for data exfiltration
Stars: ✭ 205 (-53.72%)
KnaryA simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support
Stars: ✭ 187 (-57.79%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-90.29%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-94.36%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-67.95%)
default-http-login-hunterLogin hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.
Stars: ✭ 285 (-35.67%)
SimpleKeyloggerSimple Keylogger with smtp to send emails on your account using python works on linux and Windows
Stars: ✭ 32 (-92.78%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-96.84%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: ✭ 137 (-69.07%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-94.58%)
maalikFeature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-83.07%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-92.1%)
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (-45.37%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-94.81%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-80.59%)
QuickScanPort scanning and domain utility.
Stars: ✭ 26 (-94.13%)
CloudbruteAwesome cloud enumerator
Stars: ✭ 268 (-39.5%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-93.68%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-95.03%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (-42.21%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+564.11%)
PhishapiComprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!
Stars: ✭ 272 (-38.6%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (-10.61%)
CansinaWeb Content Discovery Tool
Stars: ✭ 709 (+60.05%)