AutordpwnThe Shadow Attack Framework
Stars: ✭ 688 (+673.03%)
PentestingazureappsScript samples from the book Pentesting Azure Applications (2018, No Starch Press)
Stars: ✭ 69 (-22.47%)
NeedleThe iOS Security Testing Framework
Stars: ✭ 1,122 (+1160.67%)
P0wny ShellSingle-file PHP shell
Stars: ✭ 949 (+966.29%)
Platypus🔨 A modern multiple reverse shell sessions manager wrote in go
Stars: ✭ 559 (+528.09%)
Log Requests To SqliteBURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
Stars: ✭ 44 (-50.56%)
NishangNishang - Offensive PowerShell for red team, penetration testing and offensive security.
Stars: ✭ 5,943 (+6577.53%)
TheharvesterE-mails, subdomains and names Harvester - OSINT
Stars: ✭ 6,175 (+6838.2%)
BlackratBlackRAT - Java Based Remote Administrator Tool
Stars: ✭ 87 (-2.25%)
AmassIn-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 6,284 (+6960.67%)
Decoder Plus PlusAn extensible application for penetration testers and software developers to decode/encode data into various formats.
Stars: ✭ 79 (-11.24%)
Fwdsh3llForward shell generation framework
Stars: ✭ 62 (-30.34%)
InfogaInfoga - Email OSINT
Stars: ✭ 947 (+964.04%)
ConptyshellConPtyShell - Fully Interactive Reverse Shell for Windows
Stars: ✭ 309 (+247.19%)
Thc Ipv6IPv6 attack toolkit
Stars: ✭ 673 (+656.18%)
PhotonIncredibly fast crawler designed for OSINT.
Stars: ✭ 8,332 (+9261.8%)
FuzzdictsWeb Pentesting Fuzz 字典,一个就够了。
Stars: ✭ 4,013 (+4408.99%)
FbiFacebook Information
Stars: ✭ 660 (+641.57%)
GtfonowAutomatic privilege escalation for misconfigured capabilities, sudo and suid binaries
Stars: ✭ 68 (-23.6%)
SonarsearchA MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (+233.71%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+1033.71%)
Teamviewer permissions hook v1A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.
Stars: ✭ 297 (+233.71%)
WpforceWordpress Attack Suite
Stars: ✭ 633 (+611.24%)
Easy hackHack the World using Termux
Stars: ✭ 549 (+516.85%)
DawsAdvanced Web Shell
Stars: ✭ 551 (+519.1%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+611.24%)
Sherlock🔎 Hunt down social media accounts by username across social networks
Stars: ✭ 28,569 (+32000%)
GogitdumperDump exposed HTTP .git fast
Stars: ✭ 27 (-69.66%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+36876.4%)
Digispark ScriptsUSB Rubber Ducky type scripts written for the DigiSpark.
Stars: ✭ 629 (+606.74%)
ScantronA distributed nmap / masscan scanning framework complete with an API client for automation workflows
Stars: ✭ 542 (+508.99%)
NovahotA webshell framework for penetration testers.
Stars: ✭ 284 (+219.1%)
Reconspider🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (+597.75%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+3417.98%)
BroxyAn HTTP/HTTPS intercept proxy written in Go.
Stars: ✭ 912 (+924.72%)
AwspxA graph-based tool for visualizing effective access and resource relationships in AWS environments.
Stars: ✭ 546 (+513.48%)
HouseA runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.
Stars: ✭ 910 (+922.47%)
BlackmambaC2/post-exploitation framework
Stars: ✭ 544 (+511.24%)
HackbrowserdataDecrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Stars: ✭ 3,864 (+4241.57%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (+582.02%)
PerfusionExploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Stars: ✭ 272 (+205.62%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (+1004.49%)
DotdotpwnDotDotPwn - The Directory Traversal Fuzzer
Stars: ✭ 601 (+575.28%)
Red Teaming ToolkitThis repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Stars: ✭ 5,615 (+6208.99%)
OdatODAT: Oracle Database Attacking Tool
Stars: ✭ 906 (+917.98%)
WhonowA "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
Stars: ✭ 533 (+498.88%)
RedsnarfRedSnarf is a pen-testing / red-teaming tool for Windows environments
Stars: ✭ 1,109 (+1146.07%)
Androl4bA Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
Stars: ✭ 908 (+920.22%)
GasmaskInformation gathering tool - OSINT
Stars: ✭ 518 (+482.02%)
OsifOpen Source Information Facebook
Stars: ✭ 511 (+474.16%)
Zynix Fusionzynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.
Stars: ✭ 84 (-5.62%)
GithacktoolsThe best Hacking and PenTesting tools installer on the world
Stars: ✭ 78 (-12.36%)
Scanlessonline port scan scraper
Stars: ✭ 875 (+883.15%)
Bugcrowd Levelup Subdomain EnumerationThis repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference
Stars: ✭ 513 (+476.4%)