ResourcesNo description or website provided.
Stars: ✭ 38 (-7.32%)
cyber-gymDeliberately vulnerable scripts for Web Security training
Stars: ✭ 19 (-53.66%)
W3afw3af: web application attack and audit framework, the open source web vulnerability scanner.
Stars: ✭ 3,804 (+9178.05%)
SQLbitJust another script for automatize boolean-based blind SQL injections. (Demo)
Stars: ✭ 30 (-26.83%)
www-project-zapOWASP Zed Attack Proxy project landing page.
Stars: ✭ 52 (+26.83%)
ProtectProactively protect your Node.js web services
Stars: ✭ 394 (+860.98%)
Flag-CaptureSolutions and write-ups from security-based competitions also known as Capture The Flag competition
Stars: ✭ 84 (+104.88%)
JackhammerJackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Stars: ✭ 633 (+1443.9%)
soar-phpSQL optimizer and rewriter. - SQL 优化、重写器(辅助 SQL 调优)。
Stars: ✭ 140 (+241.46%)
CelerystalkAn asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.
Stars: ✭ 333 (+712.2%)
DamnwebscannerAnother web vulnerabilities scanner, this extension works on Chrome and Opera
Stars: ✭ 254 (+519.51%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (+285.37%)
HellraiserVulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Stars: ✭ 413 (+907.32%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-65.85%)
Zeus ScannerAdvanced reconnaissance utility
Stars: ✭ 706 (+1621.95%)
SqlmapAutomatic SQL injection and database takeover tool
Stars: ✭ 21,907 (+53331.71%)
Cracker-ToolAll in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭
Stars: ✭ 181 (+341.46%)
Sqli HunterSQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
Stars: ✭ 340 (+729.27%)
aws-wafDeep Security's APIs make it simple to integration with a variety of AWS Services
Stars: ✭ 42 (+2.44%)
DvwaDamn Vulnerable Web Application (DVWA)
Stars: ✭ 5,727 (+13868.29%)
hackableA python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
Stars: ✭ 61 (+48.78%)
Gray hat csharp codeThis repository contains full code examples from the book Gray Hat C#
Stars: ✭ 301 (+634.15%)
NerveNERVE Continuous Vulnerability Scanner
Stars: ✭ 267 (+551.22%)
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (+241.46%)
GraphqlmapGraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.
Stars: ✭ 434 (+958.54%)
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Stars: ✭ 85 (+107.32%)
aeacus🔐 Vulnerability remediation scoring system
Stars: ✭ 52 (+26.83%)
Libellux-Up-and-RunningLibellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.
Stars: ✭ 19 (-53.66%)
Jsql InjectionjSQL Injection is a Java application for automatic SQL database injection.
Stars: ✭ 891 (+2073.17%)
gDorksVulnerable website scraper
Stars: ✭ 25 (-39.02%)
Cerberus一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
Stars: ✭ 389 (+848.78%)
erebusErebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.
Stars: ✭ 72 (+75.61%)
BlazyBlazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
Stars: ✭ 637 (+1453.66%)
sqlinjection-training-appA simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (+36.59%)
SecuritymanageframworkSecurity Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Stars: ✭ 378 (+821.95%)
PowerexploitPost-Exploitation 😎 module for Penetration Tester and Hackers.
Stars: ✭ 26 (-36.59%)
Sqlivmassive SQL injection vulnerability scanner
Stars: ✭ 840 (+1948.78%)
diwaA Deliberately Insecure Web Application
Stars: ✭ 32 (-21.95%)
WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (+741.46%)
tensorflow-tbcnnTree-based Convolutional Neural Network for SQL Injection Detect
Stars: ✭ 33 (-19.51%)
DbshieldDatabase firewall written in Go
Stars: ✭ 620 (+1412.2%)
banethis is a python module that contains functions and classes which are used to test the security of web/network applications. it's coded on pure python and it's very intelligent tool ! It can easily detect: XSS (relected/stored), RCE (Remote Code/Command Execution), SSTI, SSRF, CORS Misconfigurations, File Upload, CSRF, Path Traversal,.... Also, …
Stars: ✭ 167 (+307.32%)
NucleiFast and customizable vulnerability scanner based on simple YAML based DSL.
Stars: ✭ 6,307 (+15282.93%)
filter-var-sqliBypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )
Stars: ✭ 29 (-29.27%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+1790.24%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+1065.85%)
ScoutScout - a Contactless Active Reconnaissance Tool
Stars: ✭ 48 (+17.07%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+7536.59%)
Leviathanwide range mass audit toolkit
Stars: ✭ 862 (+2002.44%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+2087.8%)
JanusecJanusec Application Gateway, Provides Fast and Secure Application Delivery. JANUSEC应用网关,提供快速、安全的应用交付。
Stars: ✭ 771 (+1780.49%)
VanquishVanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Stars: ✭ 449 (+995.12%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+7075.61%)