CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (+574.07%)
oscp-omnibusA collection of resources I'm using while working toward the OSCP
Stars: ✭ 46 (+70.37%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (+2714.81%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (+637.04%)
PspyMonitor linux processes without root permissions
Stars: ✭ 2,470 (+9048.15%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+26737.04%)
Ctf NotesEverything needed for doing CTFs
Stars: ✭ 304 (+1025.93%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+2770.37%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+6655.56%)
RoadmapGitBook: OSCP RoadMap
Stars: ✭ 89 (+229.63%)
Traitor⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket
Stars: ✭ 3,473 (+12762.96%)
Vulnhub Ctf WriteupsThis cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.
Stars: ✭ 368 (+1262.96%)
pentesting-notesNotes from OSCP, CTF, security adventures, etc...
Stars: ✭ 38 (+40.74%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (+125.93%)
SonarsearchA MongoDB importer and API for Project Sonars DNS datasets
Stars: ✭ 297 (+1000%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+13659.26%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+121785.19%)
DomainedMulti Tool Subdomain Enumeration
Stars: ✭ 688 (+2448.15%)
AwsbucketdumpSecurity Tool to Look For Interesting Files in S3 Buckets
Stars: ✭ 1,021 (+3681.48%)
ErodirA fast web directory/file enumeration tool written in Rust
Stars: ✭ 94 (+248.15%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (+329.63%)
haiti🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (+962.96%)
CameradarCameradar hacks its way into RTSP videosurveillance cameras
Stars: ✭ 2,775 (+10177.78%)
Oscp AutomationA collection of personal scripts used in hacking excercises.
Stars: ✭ 118 (+337.04%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+7040.74%)
Pwk Oscp Preparation RoadmapRoadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
Stars: ✭ 142 (+425.93%)
AttackSurfaceManagementDiscover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (+66.67%)
fransReconScript will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.
Stars: ✭ 31 (+14.81%)
Enum.pyA tool to enumerate network services
Stars: ✭ 23 (-14.81%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (+1314.81%)
Reconky-Automated Bash ScriptReconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (+518.52%)
Offport killerThis tool aims at automating the identification of potential service running behind ports identified manually either through manual scan or services running locally. The tool is useful when nmap or any scanning tool is not available and in the situation during which you did a manual port scanning and then want to identify the services running behind the identified ports.
Stars: ✭ 40 (+48.15%)
xecaPowerShell payload generator
Stars: ✭ 103 (+281.48%)
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120 (+344.44%)
default-http-login-hunterLogin hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.
Stars: ✭ 285 (+955.56%)
STEWSA Security Tool for Enumerating WebSockets
Stars: ✭ 154 (+470.37%)
Bscanan asynchronous target enumeration tool
Stars: ✭ 207 (+666.67%)
machinescliThis tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.
Stars: ✭ 34 (+25.93%)
writeupsWriteups for vulnerable machines.
Stars: ✭ 110 (+307.41%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+425.93%)
webreconAutomated Web Recon Shell Scripts
Stars: ✭ 48 (+77.78%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-7.41%)
DevBrute-A Password Brute ForcerDevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.
Stars: ✭ 91 (+237.04%)
pentest-reportsCollection of penetration test reports and pentest report templates. Published by the the best security companies in the world.
Stars: ✭ 111 (+311.11%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (+366.67%)
peniotPENIOT: Penetration Testing Tool for IoT
Stars: ✭ 164 (+507.41%)
graphw00fgraphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
Stars: ✭ 260 (+862.96%)
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (+670.37%)
challengesSecurity challenges and CTFs created by the Penultimate team.
Stars: ✭ 13 (-51.85%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: ✭ 137 (+407.41%)
Awesome Shodan Queries🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Stars: ✭ 2,758 (+10114.81%)