Hackers Tool KitIts a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram
Stars: ✭ 211 (+17.22%)
EvilgradeEvilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
Stars: ✭ 1,086 (+503.33%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+18182.78%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+1490%)
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
Stars: ✭ 166 (-7.78%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-66.11%)
Awesome Security GistsA collection of various GitHub gists for hackers, pentesters and security researchers
Stars: ✭ 701 (+289.44%)
Pentest GuidePenetration tests guide based on OWASP including test cases, resources and examples.
Stars: ✭ 1,316 (+631.11%)
PentaOpen source all-in-one CLI tool to semi-automate pentesting.
Stars: ✭ 130 (-27.78%)
Evil WinrmThe ultimate WinRM shell for hacking/pentesting
Stars: ✭ 2,251 (+1150.56%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (-28.33%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-27.78%)
StuffUnsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest
Stars: ✭ 146 (-18.89%)
Cloud BusterA Cloudflare resolver that works
Stars: ✭ 128 (-28.89%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (-30.56%)
SnowcrashA polyglot payload generator
Stars: ✭ 143 (-20.56%)
C2hackC2Hack, sharing tips and tricks for pentesters
Stars: ✭ 124 (-31.11%)
Ssrf TestingSSRF (Server Side Request Forgery) testing resources
Stars: ✭ 1,718 (+854.44%)
TechnowloggerTechNowLogger is Windows/Linux Keylogger Generator which sends key-logs via email with other juicy target info
Stars: ✭ 172 (-4.44%)
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Stars: ✭ 163 (-9.44%)
Ntlmscanscan for NTLM directories
Stars: ✭ 141 (-21.67%)
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+982.78%)
SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (-35.56%)
ArcanusARCANUS is a customized payload generator/handler.
Stars: ✭ 130 (-27.78%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+1353.89%)
OscprepoA list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
Stars: ✭ 1,916 (+964.44%)
KaitenA Undetectable Payload Generation
Stars: ✭ 169 (-6.11%)
StitchPython Remote Administration Tool (RAT)
Stars: ✭ 2,018 (+1021.11%)
Pentestsome pentest scripts & tools by [email protected]
Stars: ✭ 136 (-24.44%)
CatnipCat-Nip Automated Basic Pentest Tool - Designed For Kali Linux
Stars: ✭ 108 (-40%)
EntropyEntropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.
Stars: ✭ 126 (-30%)
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
Stars: ✭ 144 (-20%)
Nraynray distributed port scanner
Stars: ✭ 125 (-30.56%)
PasscatPasswords Recovery Tool
Stars: ✭ 164 (-8.89%)
PurplecloudAn Infrastructure as Code (IaC) deployment of a small Active Directory pentest lab in the cloud. The deployment simulates a semi-realistic corporate enterprise Active Directory with a DC and endpoints. Purple team goals include blue team detection capabilities and R&D for detection engineering new approaches.
Stars: ✭ 122 (-32.22%)
ProtonProton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.
Stars: ✭ 142 (-21.11%)
RatelRAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Stars: ✭ 121 (-32.78%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-1.67%)
Shodan DorksDorks for shodan.io. Some basic shodan dorks collected from publicly available data.
Stars: ✭ 118 (-34.44%)
VulrecVulnerability Recurrence:漏洞复现记录
Stars: ✭ 109 (-39.44%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+993.89%)
OwtfOffensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
Stars: ✭ 1,516 (+742.22%)
RelayerSMB Relay Attack Script
Stars: ✭ 136 (-24.44%)
DuckysparkTranslator from USB-Rubber-Ducky payloads to a Digispark code.
Stars: ✭ 107 (-40.56%)
PymetaPymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.
Stars: ✭ 170 (-5.56%)
PayloadHeadless CMS and Application Framework built with Node.js, React and MongoDB
Stars: ✭ 154 (-14.44%)
Sec ToolsDocker images for infosec tools
Stars: ✭ 135 (-25%)
Hacker ContainerContainer with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters
Stars: ✭ 105 (-41.67%)
WavecrackWavestone's web interface for password cracking with hashcat
Stars: ✭ 135 (-25%)
Go Deliver Go-deliver is a payload delivery tool coded in Go.
Stars: ✭ 103 (-42.78%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+670.56%)
PortiaPortia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network
Stars: ✭ 154 (-14.44%)