BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+195.67%)
WascanWAScan - Web Application Scanner
Stars: ✭ 1,895 (+531.67%)
AtlasQuick SQLMap Tamper Suggester
Stars: ✭ 679 (+126.33%)
Secbox🖤 网络安全与渗透测试工具导航
Stars: ✭ 222 (-26%)
WpreconWPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.
Stars: ✭ 135 (-55%)
MusoqUse SQL on various data sources
Stars: ✭ 252 (-16%)
Pythempentest framework
Stars: ✭ 1,060 (+253.33%)
Hacker101Source code for Hacker101.com - a free online web and mobile security class.
Stars: ✭ 12,246 (+3982%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (+37.67%)
Xray一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Stars: ✭ 6,218 (+1972.67%)
APSoft-Web-Scanner-v2Powerful dork searcher and vulnerability scanner for windows platform
Stars: ✭ 96 (-68%)
In Spectre MeltdownThis tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
Stars: ✭ 86 (-71.33%)
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
Stars: ✭ 172 (-42.67%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+182.33%)
FilebusterAn extremely fast and flexible web fuzzer
Stars: ✭ 176 (-41.33%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+94.33%)
ImagejsSmall tool to package javascript into a valid image file.
Stars: ✭ 828 (+176%)
AnsvifA Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Stars: ✭ 107 (-64.33%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (-11%)
JavacodeauditGetting started with java code auditing 代码审计入门的小项目
Stars: ✭ 289 (-3.67%)
AryAry 是一个集成类工具,主要用于调用各种安全工具,从而形成便捷的一键式渗透。
Stars: ✭ 241 (-19.67%)
PhpvulnAudit tool to find common vulnerabilities in PHP source code
Stars: ✭ 146 (-51.33%)
SqlinjectionwikiA wiki focusing on aggregating and documenting various SQL injection methods
Stars: ✭ 623 (+107.67%)
Slack Sql🎉 Bring SQL console to Slack
Stars: ✭ 115 (-61.67%)
Angularjs Csti ScannerAutomated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Stars: ✭ 214 (-28.67%)
cve-2016-1764Extraction of iMessage Data via XSS
Stars: ✭ 52 (-82.67%)
GrypeA vulnerability scanner for container images and filesystems
Stars: ✭ 362 (+20.67%)
Commodity Injection SignaturesCommodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267 (-11%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (-2%)
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (-72%)
XSS-CheatsheetXSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/
Stars: ✭ 26 (-91.33%)
D4n155OWASP D4N155 - Intelligent and dynamic wordlist using OSINT
Stars: ✭ 105 (-65%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+2315.33%)
Uxss Db🔪Browser logic vulnerabilities ☠️
Stars: ✭ 565 (+88.33%)
FselectFind files with SQL-like queries
Stars: ✭ 3,103 (+934.33%)
SQL-XSSA few SQL and XSS attack tools
Stars: ✭ 29 (-90.33%)
ConcuerrorConcuerror is a stateless model checking tool for Erlang programs.
Stars: ✭ 277 (-7.67%)
Text2sql DataA collection of datasets that pair questions with SQL queries.
Stars: ✭ 287 (-4.33%)
ShibaCatch bad SQL queries before they cause problems in production
Stars: ✭ 277 (-7.67%)
JsqlparserJSqlParser parses an SQL statement and translate it into a hierarchy of Java classes. The generated hierarchy can be navigated using the Visitor Pattern
Stars: ✭ 3,405 (+1035%)
MotioniaMotionia is a lightweight simplified on demand animation library!
Stars: ✭ 294 (-2%)
Plgoeasily create postgresql extensions in golang; moved to gitlab.com/microo8/plgo
Stars: ✭ 286 (-4.67%)
BlazerBusiness intelligence made simple
Stars: ✭ 3,102 (+934%)
Penetration testing poc渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+1186%)
Android NosqlLightweight, simple structured NoSQL database for Android
Stars: ✭ 284 (-5.33%)
QuaintSQL Query AST and Visitor for Rust
Stars: ✭ 272 (-9.33%)
BopscrkTool to generate smart and powerful wordlists
Stars: ✭ 273 (-9%)
PreqlAn interpreted relational query language that compiles to SQL.
Stars: ✭ 257 (-14.33%)
AgilebillOpen source billing and invoicing
Stars: ✭ 292 (-2.67%)
Sql ParserA validating SQL lexer and parser with a focus on MySQL dialect.
Stars: ✭ 284 (-5.33%)
OnefetchGit repository summary on your terminal
Stars: ✭ 3,680 (+1126.67%)
SvgsonTransform svg files to json notation
Stars: ✭ 271 (-9.67%)
Sqswiss-army knife for data
Stars: ✭ 275 (-8.33%)
Sql Paises Estados CidadesSQL de todos os Países e Nações (c/ Código do Portal do Comércio Exterior ou BACEN) + Estados e Federações Brasileiras (c/ DDD e Código do IBGE) + Cidades e Municípios Brasileiros (c/ Código do IBGE), incluindo as 31 regiões administrativas do DF, Ilhas e Áreas Remotas do Mundo.
Stars: ✭ 271 (-9.67%)
TinuTINU, the open tool to create bootable macOS installers
Stars: ✭ 272 (-9.33%)
Requeryrequery - modern SQL based query & persistence for Java / Kotlin / Android
Stars: ✭ 3,071 (+923.67%)