TracyA tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
Stars: ✭ 464 (-51.87%)
HardeningHardening Ubuntu. Systemd edition.
Stars: ✭ 705 (-26.87%)
Persian ToolsAn anthology of a variety of tools for the Persian language in javascript
Stars: ✭ 458 (-52.49%)
Zeus ScannerAdvanced reconnaissance utility
Stars: ✭ 706 (-26.76%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (-53.22%)
HubA command-line tool that makes git easier to use with GitHub.
Stars: ✭ 21,420 (+2121.99%)
Awesome Test AutomationA curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com
Stars: ✭ 4,712 (+388.8%)
Badkarmanetwork reconnaissance toolkit
Stars: ✭ 353 (-63.38%)
ScavengerCrawler (Bot) searching for credential leaks on different paste sites.
Stars: ✭ 347 (-64%)
Fuse SwiftA lightweight fuzzy-search library, with zero dependencies
Stars: ✭ 767 (-20.44%)
WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (-64.21%)
CyphonOpen source incident management and response platform.
Stars: ✭ 543 (-43.67%)
Automerge ActionGitHub action to automatically merge pull requests that are ready
Stars: ✭ 446 (-53.73%)
Github ConnectorThe GitHub Active Directory Connector allows managing GitHub organizations with Active Directory.
Stars: ✭ 27 (-97.2%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (-10.89%)
PwnedornotOSINT Tool for Finding Passwords of Compromised Email Addresses
Stars: ✭ 888 (-7.88%)
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (-27.49%)
PygithubTyped interactions with the GitHub API v3
Stars: ✭ 4,825 (+400.52%)
SipviciousSIPVicious OSS is a set of security tools that can be used to audit SIP based VoIP systems.
Stars: ✭ 541 (-43.88%)
Syzkallersyzkaller is an unsupervised coverage-guided kernel fuzzer
Stars: ✭ 3,841 (+298.44%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (-20.44%)
GitstalkDiscover who's upto what on Github
Stars: ✭ 538 (-44.19%)
Ssh Mitmssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation
Stars: ✭ 335 (-65.25%)
Falko Api📈 Falko API: Plataform for agile projects management 📊
Stars: ✭ 13 (-98.65%)
Git Labelmaker🎏 Manage your GitHub labels from the command line!
Stars: ✭ 534 (-44.61%)
Octokit.swiftA Swift API Client for GitHub and GitHub Enterprise
Stars: ✭ 325 (-66.29%)
AllaboutbugbountyAll about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (-21.37%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (-46.89%)
UdorkuDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.
Stars: ✭ 326 (-66.18%)
SubdomainizerA tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Stars: ✭ 915 (-5.08%)
R0akr0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems
Stars: ✭ 698 (-27.59%)
Deprecated Patrol Rules AwsA set of functions implemented using lambda-cfn to monitor an organization's AWS infrastructure for best practices, security and compliance.
Stars: ✭ 16 (-98.34%)
HarpoonCLI tool for open source and threat intelligence
Stars: ✭ 679 (-29.56%)
SpoofcheckSimple script that checks a domain for email protections
Stars: ✭ 437 (-54.67%)
OctoprofileA nicer look at GitHub profiles built with Next.js and the GitHub API
Stars: ✭ 310 (-67.84%)
Cookie crimesRead local Chrome cookies without root or decrypting
Stars: ✭ 434 (-54.98%)
ServerscanServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
Stars: ✭ 674 (-30.08%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-54.88%)
RaptorWeb-based Source Code Vulnerability Scanner
Stars: ✭ 314 (-67.43%)
Bypass Firewalls By Dns HistoryFirewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.
Stars: ✭ 739 (-23.34%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (-68.15%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (-47.2%)
SinglefileWeb Extension for Firefox/Chrome/MS Edge and CLI tool to save a faithful copy of an entire web page in a single HTML file
Stars: ✭ 4,417 (+358.2%)
Hint💡 A hinting engine for the web
Stars: ✭ 3,280 (+240.25%)
Linkedin2usernameOSINT Tool: Generate username lists for companies on LinkedIn
Stars: ✭ 504 (-47.72%)
Python IocextractDefanged Indicator of Compromise (IOC) Extractor.
Stars: ✭ 300 (-68.88%)
GosecGolang security checker
Stars: ✭ 5,694 (+490.66%)
MarsnakeSystem Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems
Stars: ✭ 16 (-98.34%)
GoohakAutomatically Launch Google Hacking Queries Against A Target Domain
Stars: ✭ 432 (-55.19%)
WpscanWPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
Stars: ✭ 6,244 (+547.72%)
Appinfoscanner一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (-56.02%)
Vivalasvenus@viva_las_venus -- This project is to learn, teach and awareness about privacy and security in the digital life, to build a better, more open and more inclusive world together!
Stars: ✭ 16 (-98.34%)
WhalerProgram to reverse Docker images into Dockerfiles
Stars: ✭ 670 (-30.5%)