DnsbruteDNS Sub-domain brute forcer, in Python + gevent
Stars: ✭ 40 (-87.5%)
CloudbruteAwesome cloud enumerator
Stars: ✭ 268 (-16.25%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (-10.31%)
PartyloudA simple tool to generate fake web browsing and mitigate tracking
Stars: ✭ 170 (-46.87%)
DnsprobeDNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplied resolvers.
Stars: ✭ 221 (-30.94%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-60.62%)
SslifyRapidly SSLify Your Server!
Stars: ✭ 168 (-47.5%)
ChameleonCustomizable honeypots for monitoring network traffic, bots activities and username\password credentials (DNS, HTTP Proxy, HTTP, HTTPS, SSH, POP3, IMAP, STMP, RDP, VNC, SMB, SOCKS5, Redis, TELNET, Postgres and MySQL)
Stars: ✭ 230 (-28.12%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-63.75%)
Nps一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发,可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面,内网dns解析、内网socks5代理等等……,并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy server, with a powerful web management terminal.
Stars: ✭ 19,537 (+6005.31%)
docker-ssl-reverse-proxyEasy-to-use auto-SSL reverse proxy as a Docker container based on Caddy and Let’s Encrypt
Stars: ✭ 22 (-93.12%)
awesome-api-securityA collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Stars: ✭ 2,079 (+549.69%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+994.69%)
PLtools整理一些内网常用渗透小工具
Stars: ✭ 227 (-29.06%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-88.12%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+959.69%)
credcheckCredentials Checking Framework
Stars: ✭ 50 (-84.37%)
KvantumAn intellectual (HTTP/HTTPS) web server with support for server side templating (Crush, Apache Velocity and JTwig)
Stars: ✭ 17 (-94.69%)
sx🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (+295.94%)
h1-searchTool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Stars: ✭ 58 (-81.87%)
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (-56.25%)
FSEC-VMBackend logic implementation for Vulnerability Management System
Stars: ✭ 19 (-94.06%)
NIST-to-TechAn open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
Stars: ✭ 61 (-80.94%)
MassdnsA high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Stars: ✭ 2,093 (+554.06%)
AzureWebAppSSLManagerAcquires and manages free SSL certificates for Azure Web App and Azure Functions applications.
Stars: ✭ 70 (-78.12%)
tipiTipi - the All-in-one Web Server for Ruby Apps
Stars: ✭ 214 (-33.12%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-55.62%)
CcatCloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
Stars: ✭ 300 (-6.25%)
rejigTurn your VPS into an attack box
Stars: ✭ 33 (-89.69%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-90.94%)
SonarsearchA MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (-7.19%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+878.44%)
LAZYPARIAHA tool for generating reverse shell payloads on the fly.
Stars: ✭ 121 (-62.19%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (-7.19%)
PeekABooPeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
Stars: ✭ 120 (-62.5%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+49.38%)
terraform-aws-acm-request-certificateTerraform module to request an ACM certificate for a domain name and create a CNAME record in the DNS zone to complete certificate validation
Stars: ✭ 83 (-74.06%)
ronin-supportA support library for Ronin. Like activesupport, but for hacking!
Stars: ✭ 23 (-92.81%)
vault-pki-monitor-venafiVenafi PKI Monitoring Secrets Engine for HashiCorp Vault that enforces security policy and provides certificate visiblity to the enterprise.
Stars: ✭ 18 (-94.37%)
netizenshipa commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.
Stars: ✭ 33 (-89.69%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-60.62%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+1023.75%)
one-scan多合一网站指纹扫描器,轻松获取网站的 IP / DNS 服务商 / 子域名 / HTTPS 证书 / WHOIS / 开发框架 / WAF 等信息
Stars: ✭ 44 (-86.25%)
wifibangwifi attacks suite
Stars: ✭ 56 (-82.5%)
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+899.38%)
RPCScanTool to communicate with RPC services and check misconfigurations on NFS shares
Stars: ✭ 53 (-83.44%)
ssl-handshakeA command-line tool for testing SSL/TLS handshake latency, written in Go.
Stars: ✭ 41 (-87.19%)
Java-Proxy-ServerThis is a simple HTTP/HTTPS proxy server written in Java
Stars: ✭ 149 (-53.44%)
Jetty.projectEclipse Jetty® - Web Container & Clients - supports HTTP/2, HTTP/1.1, HTTP/1.0, websocket, servlets, and more
Stars: ✭ 3,260 (+918.75%)
sslcontext-kickstart🔐 A lightweight high level library for configuring a http client or server based on SSLContext or other properties such as TrustManager, KeyManager or Trusted Certificates to communicate over SSL TLS for one way authentication or two way authentication provided by the SSLFactory. Support for Java, Scala and Kotlin based clients with examples. Av…
Stars: ✭ 295 (-7.81%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (-53.75%)
ez-s⚠️ [discontinued] Run a green-badge local HTTPS server with zero configuration; no certificate creation, no tunnels and no hassle.
Stars: ✭ 10 (-96.87%)
tlstools🔐 CLI tool to analyze, troubleshoot or inspect SSL certificates, requests or keys.
Stars: ✭ 45 (-85.94%)
ssl-cert-checkCheck expiry dates of local and remote SSL certificates
Stars: ✭ 28 (-91.25%)
Rancher Letsencrypt🐮 Rancher service that obtains and manages free SSL certificates from the Let's Encrypt CA
Stars: ✭ 318 (-0.62%)
dohjsDNS over HTTPS client for use in the browser
Stars: ✭ 71 (-77.81%)
BifrostBifrost C2. Open-source post-exploitation using Discord API
Stars: ✭ 37 (-88.44%)
ConstoleScan for and exploit Consul agents
Stars: ✭ 37 (-88.44%)