HackeronedbThe unofficial HackerOne disclosure Timeline
Stars: ✭ 117 (-95.79%)
Leviathanwide range mass audit toolkit
Stars: ✭ 862 (-68.98%)
BasecrackDecode All Bases - Base Scheme Decoder
Stars: ✭ 196 (-92.95%)
Sqlivmassive SQL injection vulnerability scanner
Stars: ✭ 840 (-69.77%)
Fuzzing SurveyThe Art, Science, and Engineering of Fuzzing: A Survey
Stars: ✭ 116 (-95.83%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (-16.8%)
Physics CommandPhysics platform is a tool for hardware systems (e.g: raspberryPi 3B ). It retrieves data passing through the network and sends it to a control panel. It works the same way as a botnet by receiving remote commands. (you can imagine that as a black box)
Stars: ✭ 23 (-99.17%)
HackbarHackBar plugin for Burpsuite
Stars: ✭ 917 (-67%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (-92.01%)
ProcjackPoC of injecting code into a running Linux process
Stars: ✭ 17 (-99.39%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (-95.86%)
Url TrackerChange monitoring app that checks the content of web pages in different periods.
Stars: ✭ 171 (-93.85%)
KoinKoin - a pragmatic lightweight dependency injection framework for Kotlin
Stars: ✭ 7,142 (+157%)
JlscaSide-channel toolkit in Julia
Stars: ✭ 114 (-95.9%)
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (-71.54%)
HttpcanaryA powerful capture and injection tool for the Android platform
Stars: ✭ 2,188 (-21.27%)
PrivescA collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
Stars: ✭ 786 (-71.72%)
Burp Send ToAdds a customizable "Send to..."-context-menu to your BurpSuite.
Stars: ✭ 114 (-95.9%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-94.82%)
Burp Bounty ProfilesBurp Bounty profiles compilation, feel free to contribute!
Stars: ✭ 76 (-97.27%)
Mandibulelinux elf injector for x86 x86_64 arm arm64
Stars: ✭ 171 (-93.85%)
JanusecJanusec Application Gateway, Provides Fast and Secure Application Delivery. JANUSEC应用网关,提供快速、安全的应用交付。
Stars: ✭ 771 (-72.26%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-95.93%)
RapidRapid is a Go library for property-based testing that supports state machine ("stateful" or "model-based") testing and fully automatic test case minimization ("shrinking")
Stars: ✭ 213 (-92.34%)
Oss FuzzOSS-Fuzz - continuous fuzzing for open source software.
Stars: ✭ 6,937 (+149.62%)
GiniA fast SAT solver
Stars: ✭ 112 (-95.97%)
HalfemptyA fast, parallel test case minimization tool.
Stars: ✭ 750 (-73.01%)
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (-93.88%)
Afl TrainingExercises to learn how to fuzz with American Fuzzy Lop
Stars: ✭ 726 (-73.88%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (-57.03%)
CamerattackAn attack tool designed to remotely disable CCTV camera streams (like in spy movies)
Stars: ✭ 192 (-93.09%)
NetbareNet packets capture & injection library designed for Android
Stars: ✭ 716 (-74.24%)
StacoanStaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Stars: ✭ 707 (-74.56%)
BbreconPython library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (-93.92%)
DomainedMulti Tool Subdomain Enumeration
Stars: ✭ 688 (-75.24%)
FawkesFawkes is a tool to search for targets vulnerable to SQL Injection. Performs the search using Google search engine.
Stars: ✭ 108 (-96.11%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-93.45%)
BbrAn open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
Stars: ✭ 142 (-94.89%)
WifiphisherWifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.
Stars: ✭ 10,333 (+271.82%)
AngoraAngora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.
Stars: ✭ 669 (-75.93%)
FuzzfactoryDomain-Specific Fuzzing with Waypoints
Stars: ✭ 167 (-93.99%)
SwiftdiSwiftDI the new way to use your dependency in Swift 5.1
Stars: ✭ 107 (-96.15%)
Security whitepapersCollection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Stars: ✭ 644 (-76.83%)
Javafuzzcoverage guided fuzz testing for java
Stars: ✭ 193 (-93.06%)
BoofuzzA fork and successor of the Sulley Fuzzing Framework
Stars: ✭ 1,180 (-57.54%)
Sqlite LabThis code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/
Stars: ✭ 140 (-94.96%)
GivingstormInfection vector that bypasses AV, IDS, and IPS. (For now...)
Stars: ✭ 72 (-97.41%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (-58.11%)
Xss LoaderXss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
Stars: ✭ 215 (-92.26%)
PwnbackBurp Extender plugin that generates a sitemap of a website using Wayback Machine
Stars: ✭ 203 (-92.7%)
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
Stars: ✭ 2,750 (-1.04%)
ExtensionSimple browser extension for managing accounts in a browser and allowing the signing of extrinsics using these accounts. Also provides a simple interface for compliant extensions for dapps.
Stars: ✭ 139 (-95%)
RandomjsonProvides a Kotlin/Java library to create a random json string
Stars: ✭ 70 (-97.48%)