awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-94.65%)
uberscanSecurity program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.
Stars: ✭ 31 (-95.12%)
ApkurlgrepExtract endpoints from APK files
Stars: ✭ 405 (-36.22%)
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
Stars: ✭ 166 (-73.86%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-49.29%)
Antiddos System🛡️⚔️ Protect your web app from DDOS attack or the Dead Ping + CAPTCHA VERIFICATION in one line!
Stars: ✭ 173 (-72.76%)
HydrafwHydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing
Stars: ✭ 165 (-74.02%)
Industrial-Security-Auditing-FrameworkISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.
Stars: ✭ 43 (-93.23%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-96.22%)
NishangNishang - Offensive PowerShell for red team, penetration testing and offensive security.
Stars: ✭ 5,943 (+835.91%)
InjuredandroidA vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
Stars: ✭ 317 (-50.08%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-97.8%)
SherlockThis script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)
Stars: ✭ 36 (-94.33%)
avainA Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
Stars: ✭ 56 (-91.18%)
HawkeyeHawkeye filesystem analysis tool
Stars: ✭ 202 (-68.19%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-96.54%)
crawleetWeb Recon & Exploitation Tool.
Stars: ✭ 48 (-92.44%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (-22.52%)
PayloadsGit All the Payloads! A collection of web attack payloads.
Stars: ✭ 2,862 (+350.71%)
RubyfuRubyfu, where Ruby goes evil!
Stars: ✭ 228 (-64.09%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-90.39%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-86.46%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-96.38%)
tomcter😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.
Stars: ✭ 18 (-97.17%)
MosintAn automated e-mail OSINT tool
Stars: ✭ 184 (-71.02%)
OverlordOverlord - Red Teaming Infrastructure Automation
Stars: ✭ 258 (-59.37%)
Lyncsmashlocate and attack Lync/Skype for Business
Stars: ✭ 258 (-59.37%)
Mobileapp Pentest CheatsheetThe Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
Stars: ✭ 3,051 (+380.47%)
PoseidonPoseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algorithms classify and predict the type of device.
Stars: ✭ 310 (-51.18%)
Sst ElementsSST Architectural Simulation Components and Libraries
Stars: ✭ 36 (-94.33%)
UptuxLinux privilege escalation checks (systemd, dbus, socket fun, etc)
Stars: ✭ 260 (-59.06%)
tryhackme-ctfTryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.
Stars: ✭ 140 (-77.95%)
Dnxfirewalldnxfirewall (dad's next-gen firewall), a pure Python next generation firewall built on top of Linux kernel/netfilter.
Stars: ✭ 174 (-72.6%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (-59.69%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (-60.63%)
Easy hackHack the World using Termux
Stars: ✭ 549 (-13.54%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-77.64%)
Top25 ParameterFor basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Stars: ✭ 388 (-38.9%)
huntkitDocker - Ubuntu with a bunch of PenTesting tools and wordlists
Stars: ✭ 51 (-91.97%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (-37.64%)
LauschgeraetGets in the way of your victim's traffic and out of yours
Stars: ✭ 25 (-96.06%)
WireBugWireBug is a toolset for Voice-over-IP penetration testing
Stars: ✭ 142 (-77.64%)
ElectriceyeContinuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Stars: ✭ 255 (-59.84%)
Salt ScannerLinux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Stars: ✭ 261 (-58.9%)
NerveNERVE Continuous Vulnerability Scanner
Stars: ✭ 267 (-57.95%)
RedcloudAutomated Red Team Infrastructure deployement using Docker
Stars: ✭ 551 (-13.23%)
BlacknetFree advanced and modern Windows botnet with a nice and secure PHP panel.
Stars: ✭ 271 (-57.32%)
Iprotate burp extensionExtension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
Stars: ✭ 484 (-23.78%)