Dr0p1t FrameworkA framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks
Stars: ✭ 1,132 (+351%)
Recreator PhishingPROFESSIONAL TOOL ORIENTED IN THE RECREATION OF PHISHING WEBSITES SCENARIOS
Stars: ✭ 136 (-45.82%)
AaiaAWS Identity and Access Management Visualizer and Anomaly Finder
Stars: ✭ 218 (-13.15%)
MacphishOffice for Mac Macro Payload Generator
Stars: ✭ 202 (-19.52%)
ThreagileAgile Threat Modeling Toolkit
Stars: ✭ 162 (-35.46%)
SubtakeAutomatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Stars: ✭ 104 (-58.57%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+626.69%)
LyricpassPassword wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.
Stars: ✭ 58 (-76.89%)
Attack monitorEndpoint detection & Malware analysis software
Stars: ✭ 186 (-25.9%)
ErlamsaErlang port of famous radamsa fuzzzer.
Stars: ✭ 56 (-77.69%)
ApisecuritybestpracticesResources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.
Stars: ✭ 1,745 (+595.22%)
PcapvizVisualize network topologies and collect graph statistics based on pcap files
Stars: ✭ 247 (-1.59%)
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
Stars: ✭ 133 (-47.01%)
SpellbookMicro-framework for rapid development of reusable security tools
Stars: ✭ 53 (-78.88%)
Security ScriptsA collection of public offensive and defensive security related scripts for InfoSec students.
Stars: ✭ 101 (-59.76%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-79.28%)
Blackphish🔱 [ Phishing Made Easy ] 🔱 (In Beta)
Stars: ✭ 133 (-47.01%)
Pythempentest framework
Stars: ✭ 1,060 (+322.31%)
Werdlists⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
Stars: ✭ 216 (-13.94%)
YetiYour Everyday Threat Intelligence
Stars: ✭ 1,037 (+313.15%)
Pocsuite3pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Stars: ✭ 2,213 (+781.67%)
ShellphishPhishing Tool for 18 social media: Instagram, Facebook, Snapchat, Github, Twitter, Yahoo, Protonmail, Spotify, Netflix, Linkedin, Wordpress, Origin, Steam, Microsoft, InstaFollowers, Gitlab, Pinterest
Stars: ✭ 1,037 (+313.15%)
Python HoneypotOWASP Honeypot, Automated Deception Framework.
Stars: ✭ 160 (-36.25%)
Grayfishlight weight phishing framework with 18+ pages.
Stars: ✭ 101 (-59.76%)
PacbotPacBot (Policy as Code Bot)
Stars: ✭ 1,017 (+305.18%)
PhishmailerGenerate Professional Phishing Emails Fast And Easy
Stars: ✭ 227 (-9.56%)
Legal Bug Bounty#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.
Stars: ✭ 42 (-83.27%)
PentaOpen source all-in-one CLI tool to semi-automate pentesting.
Stars: ✭ 130 (-48.21%)
ToxicAn ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)
Stars: ✭ 987 (+293.23%)
Unwebpack SourcemapExtract uncompiled, uncompressed SPA code from Webpack source maps.
Stars: ✭ 176 (-29.88%)
Django DefectdojoDefectDojo is an open-source application vulnerability correlation and security orchestration tool.
Stars: ✭ 1,926 (+667.33%)
SecuritybotDistributed alerting for the masses!
Stars: ✭ 987 (+293.23%)
Oob ServerA Bind9 server for pentesters to use for Out-of-Band vulnerabilities
Stars: ✭ 125 (-50.2%)
DufflebagSearch exposed EBS volumes for secrets
Stars: ✭ 177 (-29.48%)
ProgpilotA static analysis tool for security
Stars: ✭ 226 (-9.96%)
HawkeyeHawkeye filesystem analysis tool
Stars: ✭ 202 (-19.52%)
FugaciousOSSSM (awesome). Open source short-term secure messaging
Stars: ✭ 100 (-60.16%)
Awesome Aws SecurityCurated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
Stars: ✭ 100 (-60.16%)
MiteruAn experimental phishing kit detection tool
Stars: ✭ 125 (-50.2%)
GitgotSemi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
Stars: ✭ 964 (+284.06%)
Gitlab WatchmanMonitoring GitLab for sensitive data shared publicly
Stars: ✭ 127 (-49.4%)
FiercephishFiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.
Stars: ✭ 960 (+282.47%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-29.48%)
XrayguiBuild A GUI For Xray,给Xray造一个GUI控制端。
Stars: ✭ 30 (-88.05%)
SwiftnessA note-taking macOS app for penetration-testers.
Stars: ✭ 124 (-50.6%)
TigersharkBilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.
Stars: ✭ 212 (-15.54%)
RoutersploitExploitation Framework for Embedded Devices
Stars: ✭ 9,866 (+3830.68%)
ExeinExein core for Linux based firmware
Stars: ✭ 158 (-37.05%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+440.64%)
Qsfuzzqsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
Stars: ✭ 201 (-19.92%)
Slack WatchmanMonitoring your Slack workspaces for sensitive information
Stars: ✭ 159 (-36.65%)
PowershellarmouryA PowerShell armoury for penetration testers or other random security guys
Stars: ✭ 99 (-60.56%)
King PhisherPhishing Campaign Toolkit
Stars: ✭ 1,352 (+438.65%)