KeyloggerA simple keylogger for Windows, Linux and Mac
Stars: ✭ 1,007 (+1018.89%)
BlazyBlazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
Stars: ✭ 637 (+607.78%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+1021.11%)
DnsbruteDNS Sub-domain brute forcer, in Python + gevent
Stars: ✭ 40 (-55.56%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+603.33%)
CtfSome of my CTF solutions
Stars: ✭ 70 (-22.22%)
Digispark ScriptsUSB Rubber Ducky type scripts written for the DigiSpark.
Stars: ✭ 629 (+598.89%)
Security ListPenetrum LLC opensource security tool list.
Stars: ✭ 619 (+587.78%)
Offport killerThis tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.
Stars: ✭ 40 (-55.56%)
Penetration Testing ToolsA collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
Stars: ✭ 614 (+582.22%)
Embaemba - An analyzer for Linux-based firmware of embedded devices.
Stars: ✭ 607 (+574.44%)
InstabruteInstagram password bruteforcer
Stars: ✭ 91 (+1.11%)
Adidas Multi Session(Python) Program to simulate multiple sessions on adidas queue pages.
Stars: ✭ 90 (+0%)
BlackratBlackRAT - Java Based Remote Administrator Tool
Stars: ✭ 87 (-3.33%)
Mssqli DuetSQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
Stars: ✭ 82 (-8.89%)
Netmap.jsFast browser-based network discovery module
Stars: ✭ 70 (-22.22%)
ToxicAn ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)
Stars: ✭ 987 (+996.67%)
Pentest EnvPentest environment deployer (kali linux + targets) using vagrant and chef.
Stars: ✭ 610 (+577.78%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (+574.44%)
XsserCross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Stars: ✭ 606 (+573.33%)
Articles Translator📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.
Stars: ✭ 606 (+573.33%)
UgfraudAn Unsupervised Graph-based Toolbox for Fraud Detection
Stars: ✭ 38 (-57.78%)
DotdotpwnDotDotPwn - The Directory Traversal Fuzzer
Stars: ✭ 601 (+567.78%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (+568.89%)
PwnablewebPwnableWeb is a suite of web applications for use in information security training.
Stars: ✭ 81 (-10%)
Intrigue IdentApplication and Service Fingerprinting
Stars: ✭ 70 (-22.22%)
Seccomp ToolsProvide powerful tools for seccomp analysis
Stars: ✭ 599 (+565.56%)
Terraform Aws Secure BaselineTerraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.
Stars: ✭ 596 (+562.22%)
Pentest ChainsawScrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product
Stars: ✭ 36 (-60%)
OpendoorOWASP WEB Directory Scanner
Stars: ✭ 586 (+551.11%)
ZeratoolAutomatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems
Stars: ✭ 584 (+548.89%)
CheckmyhttpsWe propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).
Stars: ✭ 35 (-61.11%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (+528.89%)
Damn Vulnerable Graphql ApplicationDamn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Stars: ✭ 567 (+530%)
ThoronThoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.
Stars: ✭ 87 (-3.33%)
PrismaticaResponsive Command and Control System
Stars: ✭ 81 (-10%)
PentestingazureappsScript samples from the book Pentesting Azure Applications (2018, No Starch Press)
Stars: ✭ 69 (-23.33%)
Ctf weba project aim to collect CTF web practices .
Stars: ✭ 564 (+526.67%)
IosMost usable tools for iOS penetration testing
Stars: ✭ 563 (+525.56%)
BrutexAutomatically brute force all services running on a target.
Stars: ✭ 974 (+982.22%)
Anti Ddos🔒 Anti DDOS | Bash Script Project 🔒
Stars: ✭ 561 (+523.33%)
Doublepulsar Detection ScriptA python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.
Stars: ✭ 977 (+985.56%)
NishangNishang - Offensive PowerShell for red team, penetration testing and offensive security.
Stars: ✭ 5,943 (+6503.33%)
Jsprimea javascript static security analysis tool
Stars: ✭ 556 (+517.78%)
Easy hackHack the World using Termux
Stars: ✭ 549 (+510%)
Koa2 RatelimitRate-limiting middleware for Koa2 ES6. Use to limit repeated requests to APIs and/or endpoints such as password reset.
Stars: ✭ 81 (-10%)
AppmonDocumentation:
Stars: ✭ 1,157 (+1185.56%)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (+983.33%)
DawsAdvanced Web Shell
Stars: ✭ 551 (+512.22%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+36465.56%)
ScantronA distributed nmap / masscan scanning framework complete with an API client for automation workflows
Stars: ✭ 542 (+502.22%)
PgenCommand-line passphrase generator
Stars: ✭ 68 (-24.44%)
FirstbloodWrite exploit faster with up-to-date python 3
Stars: ✭ 34 (-62.22%)