Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+780.76%)
TelemetrysourcererEnumerate and disable common sources of telemetry used by AV/EDR.
Stars: ✭ 400 (-28.06%)
TracyA tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
Stars: ✭ 464 (-16.55%)
AdhritAndroid Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.
Stars: ✭ 399 (-28.24%)
WalaT.J. Watson Libraries for Analysis
Stars: ✭ 395 (-28.96%)
CredoA static code analysis tool for the Elixir language with a focus on code consistency and teaching.
Stars: ✭ 4,144 (+645.32%)
SvfStatic Value-Flow Analysis Framework for Source Code
Stars: ✭ 540 (-2.88%)
PhasarA LLVM-based static analysis framework.
Stars: ✭ 503 (-9.53%)
Awesome Test AutomationA curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com
Stars: ✭ 4,712 (+747.48%)
Cerberus一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Stars: ✭ 389 (-30.04%)
Race The WebTests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
Stars: ✭ 385 (-30.76%)
Awesome LintersA community-driven list of awesome linters.
Stars: ✭ 439 (-21.04%)
EngineDroidefense: Advance Android Malware Analysis Framework
Stars: ✭ 386 (-30.58%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (-10.07%)
Go ToolsStaticcheck - The advanced Go linter
Stars: ✭ 4,317 (+676.44%)
EnlightnYour performance & security consultant, an artisan command away.
Stars: ✭ 378 (-32.01%)
Envizonnetwork visualization & vulnerability management/reporting
Stars: ✭ 382 (-31.29%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-31.29%)
Fwanalyzera tool to analyze filesystem images for security
Stars: ✭ 382 (-31.29%)
Lazy importerlibrary for importing functions from dlls in a hidden, reverse engineer unfriendly way
Stars: ✭ 544 (-2.16%)
JediAwesome autocompletion, static analysis and refactoring library for python
Stars: ✭ 5,037 (+805.94%)
MxtractmXtract - Memory Extractor & Analyzer
Stars: ✭ 499 (-10.25%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (-21.04%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (-31.47%)
PyupA tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.
Stars: ✭ 379 (-31.83%)
SpoofcheckSimple script that checks a domain for email protections
Stars: ✭ 437 (-21.4%)
Myscanmyscan 被动扫描
Stars: ✭ 373 (-32.91%)
PhpatPHP Architecture Tester - Easy to use architectural testing tool for PHP ✔️
Stars: ✭ 489 (-12.05%)
WitnessmeWeb Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
Stars: ✭ 436 (-21.58%)
LadongoLadon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
Stars: ✭ 366 (-34.17%)
Dss📄 Documented Style Sheets Parser
Stars: ✭ 375 (-32.55%)
Cookie crimesRead local Chrome cookies without root or decrypting
Stars: ✭ 434 (-21.94%)
Rustscan🤖 The Modern Port Scanner 🤖
Stars: ✭ 5,218 (+838.49%)
OffensivedlrToolbox containing research notes & PoC code for weaponizing .NET's DLR
Stars: ✭ 364 (-34.53%)
SkyarkSkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
Stars: ✭ 526 (-5.4%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-21.76%)
Cwe checkercwe_checker finds vulnerable patterns in binary executables
Stars: ✭ 372 (-33.09%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (-33.45%)
GrypeA vulnerability scanner for container images and filesystems
Stars: ✭ 362 (-34.89%)
PhpmndPHP Magic Number Detector
Stars: ✭ 431 (-22.48%)
W5Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Stars: ✭ 367 (-33.99%)
SpicypassA light-weight password manager with a focus on simplicity and security
Stars: ✭ 367 (-33.99%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-23.2%)
SolhintSolhint is an open source project created by https://protofire.io. Its goal is to provide a linting utility for Solidity code.
Stars: ✭ 363 (-34.71%)
ShellcheckShellCheck, a static analysis tool for shell scripts
Stars: ✭ 27,211 (+4794.06%)
BlackmambaC2/post-exploitation framework
Stars: ✭ 544 (-2.16%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (-7.91%)
Vulscanvulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486 (-12.59%)
Appinfoscanner一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (-23.74%)
UnsignRemove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)
Stars: ✭ 362 (-34.89%)
ThreatmapperIdentify vulnerabilities in running containers, images, hosts and repositories
Stars: ✭ 361 (-35.07%)
ElsaEmacs Lisp Static Analyzer
Stars: ✭ 485 (-12.77%)
ChroniclePublic append-only ledger microservice built with Slim Framework
Stars: ✭ 429 (-22.84%)