ThecollectiveThe Collective. A repo for a collection of red-team projects found mostly on Github.
Stars: ✭ 85 (-34.62%)
uberscanSecurity program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.
Stars: ✭ 31 (-76.15%)
OverlordOverlord - Red Teaming Infrastructure Automation
Stars: ✭ 258 (+98.46%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (+96.92%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-33.85%)
JwtA JWT (JSON Web Token) Encoder & Decoder
Stars: ✭ 107 (-17.69%)
One Lin3rGives you one-liners that aids in penetration testing operations, privilege escalation and more
Stars: ✭ 1,259 (+868.46%)
WebkillerTool Information Gathering Write By Python.
Stars: ✭ 300 (+130.77%)
CcatCloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
Stars: ✭ 300 (+130.77%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (+128.46%)
PasshuntPasshunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
Stars: ✭ 961 (+639.23%)
Angular Full StackAngular Full Stack project built using Angular, Express, Mongoose and Node. Whole stack in TypeScript.
Stars: ✭ 1,261 (+870%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (+656.15%)
CryptonLibrary consisting of explanation and implementation of all the existing attacks on various Encryption Systems, Digital Signatures, Key Exchange, Authentication methods along with example challenges from CTFs
Stars: ✭ 995 (+665.38%)
Enum4linux NgA next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Stars: ✭ 349 (+168.46%)
WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (+165.38%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (+731.54%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (+147.69%)
PowerladonLadon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC
Stars: ✭ 39 (-70%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+676.15%)
Ctfclictfcli is a tool to manage Capture The Flag events and challenges
Stars: ✭ 43 (-66.92%)
Gitjacker🔪 Leak git repositories from misconfigured websites
Stars: ✭ 1,249 (+860.77%)
Cierge🗝️ Passwordless OIDC authentication done right
Stars: ✭ 1,245 (+857.69%)
Go AloneA simple to use, high-performance, Go (golang) MAC signer.
Stars: ✭ 82 (-36.92%)
Online Learning Cloud Platform👀在线学习平台,前端主要技术:Angular,后端主要技术:springboot (项目包含前台,后台上传失误,可能丢失代码......分为前台展示系统及后台管理系统。前台系统包含首页门户、多级菜单、问题页面、免费课程、练习页面等模块。 后台管理系统包含课程管理、用户管理、管理员管理、评论管理等模块。系统介绍及详细功能点、技术点见项目内文档描述)
Stars: ✭ 117 (-10%)
CupertinojwtParse Apple's .p8 private key file and sign JWT with ES256, without third-party dependencies.
Stars: ✭ 107 (-17.69%)
Vouch Proxyan SSO and OAuth / OIDC login solution for Nginx using the auth_request module
Stars: ✭ 1,239 (+853.08%)
C2hackC2Hack, sharing tips and tricks for pentesters
Stars: ✭ 124 (-4.62%)
MilkomedaSpring extend componets which build from experience of bussiness, let developers to develop with Spring Boot as fast as possible.(基于Spring生态打造的一系列来自业务上的快速开发模块集合。)
Stars: ✭ 117 (-10%)
Backfuzzprotocol fuzzing toolkit
Stars: ✭ 106 (-18.46%)
Beef Over WanBrowser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]
Stars: ✭ 82 (-36.92%)
Mssqli DuetSQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
Stars: ✭ 82 (-36.92%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-19.23%)
Python JwtJSON Web Token library for Python
Stars: ✭ 81 (-37.69%)
PwnablewebPwnableWeb is a suite of web applications for use in information security training.
Stars: ✭ 81 (-37.69%)
Jwt Auth🔐 JSON Web Token Authentication for Laravel & Lumen
Stars: ✭ 10,305 (+7826.92%)
PrismaticaResponsive Command and Control System
Stars: ✭ 81 (-37.69%)
StegonlineA web-based, accessible and open-source port of StegSolve.
Stars: ✭ 105 (-19.23%)
HoundsploitAn advanced graphical search engine for Exploit-DB
Stars: ✭ 81 (-37.69%)
X Admin致力于快速开发中小型后台管理系统项目模板(更新中......)
Stars: ✭ 123 (-5.38%)
Pearprojectpear,梨子,轻量级的在线项目/任务协作系统,远程办公协作
Stars: ✭ 1,610 (+1138.46%)
ZitadelZITADEL - Cloud Native Identity and Access Management
Stars: ✭ 105 (-19.23%)
Sysmon ModularA repository of sysmon configuration modules
Stars: ✭ 1,229 (+845.38%)
Deno crud jwt🦕 basic jwt implementation with CRUD operations using deno + postgres
Stars: ✭ 80 (-38.46%)
Dnsubdnsub一款好用的子域名扫描工具
Stars: ✭ 106 (-18.46%)
DeathstarUses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.
Stars: ✭ 1,221 (+839.23%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+837.69%)
TerrascanDetect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
Stars: ✭ 2,687 (+1966.92%)
Slideswon't maintain
Stars: ✭ 79 (-39.23%)
GtfoblookupOffline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)
Stars: ✭ 123 (-5.38%)
Network Threats TaxonomyMachine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies
Stars: ✭ 79 (-39.23%)