Darkspiritz🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (-63.56%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (+26.46%)
password-listPassword lists with top passwords to optimize bruteforce attacks
Stars: ✭ 174 (-71.05%)
Pwdlyser-CLIPython-based CLI Password Analyser (Reporting Tool)
Stars: ✭ 29 (-95.17%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+28.95%)
Capsulecorp PentestVagrant VirtualBox environment for conducting an internal network penetration test
Stars: ✭ 214 (-64.39%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (+63.56%)
ChangemeA default credential scanner.
Stars: ✭ 928 (+54.41%)
NarthexModular personalized dictionary generator.
Stars: ✭ 156 (-74.04%)
EventqlDistributed "massively parallel" SQL query engine
Stars: ✭ 1,121 (+86.52%)
IMAPLoginTesterA simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.
Stars: ✭ 47 (-92.18%)
FugaciousOSSSM (awesome). Open source short-term secure messaging
Stars: ✭ 100 (-83.36%)
LnkupGenerates malicious LNK file payloads for data exfiltration
Stars: ✭ 205 (-65.89%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-81.2%)
EmbedosEmbedOS - Embedded security testing virtual machine
Stars: ✭ 108 (-82.03%)
Nimscan🚀 Fast Port Scanner 🚀
Stars: ✭ 134 (-77.7%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-96.34%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (-75.04%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-96.17%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (-25.12%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (-21.13%)
SmogcloudFind cloud assets that no one wants exposed 🔎 ☁️
Stars: ✭ 168 (-72.05%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (-52.25%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-94.18%)
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+432.11%)
CrateCrateDB is a distributed SQL database that makes it simple to store and analyze
massive amounts of data in real-time.
Stars: ✭ 3,254 (+441.43%)
KaboomA tool to automate penetration tests
Stars: ✭ 322 (-46.42%)
Evil SsdpSpoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
Stars: ✭ 204 (-66.06%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-22.96%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-13.98%)
brutasWordlists and passwords handcrafted with ♥
Stars: ✭ 32 (-94.68%)
agenthashtopolis.org
Stars: ✭ 19 (-96.84%)
Rustscan🤖 The Modern Port Scanner 🤖
Stars: ✭ 5,218 (+768.22%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+592.51%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-97.67%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (-34.94%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-85.69%)
agent-pythonOfficial python agent for using the distributed hashcracker Hashtopolis
Stars: ✭ 39 (-93.51%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (-36.61%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (-34.11%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-32.95%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+464.23%)
Fair Analytics📊 An analytics server that doesn't undermine user's privacy
Stars: ✭ 755 (+25.62%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (-38.44%)
KaonashiWordlist, rules and masks from Kaonashi project (RootedCON 2019)
Stars: ✭ 353 (-41.26%)
Dradis CeDradis Framework: Colllaboration and reporting for IT Security teams
Stars: ✭ 443 (-26.29%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (-40.93%)
Cerberus一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Stars: ✭ 389 (-35.27%)
ArchstrikeAn Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Stars: ✭ 401 (-33.28%)
DuplicutRemove duplicates from MASSIVE wordlist, without sorting it (for dictionary-based password cracking)
Stars: ✭ 352 (-41.43%)
Colabcat😺 Running Hashcat on Google Colab with session backup and restore.
Stars: ✭ 407 (-32.28%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-30.78%)
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-67.89%)
WstgThe Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
Stars: ✭ 3,873 (+544.43%)
Scanners BoxA powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Stars: ✭ 5,590 (+830.12%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-46.42%)
PacketwhisperPacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.
Stars: ✭ 405 (-32.61%)