DirbleFast directory scanning and scraping tool
Stars: ✭ 468 (+150.27%)
VwgenVulnerable Web applications Generator
Stars: ✭ 75 (-59.89%)
DragonflyMinecraft (Bedrock Edition) server software written in Go
Stars: ✭ 148 (-20.86%)
WordpresscanWPScan rewritten in Python + some WPSeku ideas
Stars: ✭ 456 (+143.85%)
OpenvulnapiDocumentation and Tools for Cisco's PSIRT openVuln API
Stars: ✭ 73 (-60.96%)
Hacking Tools RepositoryA list of security/hacking tools that have been collected from the internet. Suggestions are welcomed.
Stars: ✭ 448 (+139.57%)
HershellHershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (+136.36%)
Cloudflair🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
Stars: ✭ 1,176 (+528.88%)
GraphqlmapGraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.
Stars: ✭ 434 (+132.09%)
SocialfishPhishing Tool & Information Collector
Stars: ✭ 2,522 (+1248.66%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (+128.34%)
GivingstormInfection vector that bypasses AV, IDS, and IPS. (For now...)
Stars: ✭ 72 (-61.5%)
Appinfoscanner一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (+126.74%)
PakuriPenetration test Achieve Knowledge Unite Rapid Interface
Stars: ✭ 125 (-33.16%)
ReverseapkQuickly analyze and reverse engineer Android packages
Stars: ✭ 419 (+124.06%)
GirshAutomatically spawn a reverse shell fully interactive for Linux or Windows victim
Stars: ✭ 66 (-64.71%)
M WizInstall Metasploit And Repair Metasploit In Termux With Easy Steps
Stars: ✭ 148 (-20.86%)
WpintelChrome extension designed for WordPress Vulnerability Scanning and information gathering!
Stars: ✭ 70 (-62.57%)
T14m4tAutomated brute-forcing attack tool.
Stars: ✭ 160 (-14.44%)
Wpscan V3THIS REPOSITORY HAS BEEN MOVED TO https://github.com/wpscanteam/wpscan USE THAT!!!
Stars: ✭ 132 (-29.41%)
HellraiserVulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Stars: ✭ 413 (+120.86%)
C2hackC2Hack, sharing tips and tricks for pentesters
Stars: ✭ 124 (-33.69%)
IoxTool for port forwarding & intranet proxy
Stars: ✭ 411 (+119.79%)
PixiewpsAn offline Wi-Fi Protected Setup brute-force utility
Stars: ✭ 1,149 (+514.44%)
Ip TracerTrack any ip address with IP-Tracer. IP-Tracer is developed for Linux and Termux. you can retrieve any ip address information using IP-Tracer.
Stars: ✭ 399 (+113.37%)
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
Stars: ✭ 166 (-11.23%)
GdogA fully featured Windows backdoor that uses Gmail as a C&C server
Stars: ✭ 399 (+113.37%)
XshockXSHOCK Shellshock Exploit
Stars: ✭ 65 (-65.24%)
HuskyciPerforming security tests inside your CI
Stars: ✭ 398 (+112.83%)
StuffUnsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest
Stars: ✭ 146 (-21.93%)
Macos SetupA curated macOS setup | v2
Stars: ✭ 60 (-67.91%)
Ssrf TestingSSRF (Server Side Request Forgery) testing resources
Stars: ✭ 1,718 (+818.72%)
Cerberus一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Stars: ✭ 389 (+108.02%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (+477.01%)
PigA Linux packet crafting tool.
Stars: ✭ 384 (+105.35%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-5.35%)
ReplThe Learning Hub for UoL's Online CS Students
Stars: ✭ 367 (+96.26%)
EvilgradeEvilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
Stars: ✭ 1,086 (+480.75%)
IpapatchPatch iOS Apps, The Easy Way, Without Jailbreak.
Stars: ✭ 3,837 (+1951.87%)
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+942.25%)
GrypeA vulnerability scanner for container images and filesystems
Stars: ✭ 362 (+93.58%)
MhddosBest DDoS Attack Script Python3, Cyber Attack With 36 Method
Stars: ✭ 55 (-70.59%)
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (+94.12%)
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
Stars: ✭ 144 (-22.99%)
Dependency TrackDependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Stars: ✭ 718 (+283.96%)
HailScalable genomic data analysis.
Stars: ✭ 706 (+277.54%)
RailsgoatA vulnerable version of Rails that follows the OWASP Top 10
Stars: ✭ 699 (+273.8%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (-29.41%)
FeroxbusterA fast, simple, recursive content discovery tool written in Rust.
Stars: ✭ 1,314 (+602.67%)
Awesome Security GistsA collection of various GitHub gists for hackers, pentesters and security researchers
Stars: ✭ 701 (+274.87%)
SublertSublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.
Stars: ✭ 699 (+273.8%)