DirsearchA Go implementation of dirsearch.
Stars: ✭ 164 (+20.59%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-61.76%)
nightcallAutomated Enumeration Script for Pentesting
Stars: ✭ 32 (-76.47%)
Openvas ScannerOpen Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)
Stars: ✭ 1,056 (+676.47%)
RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Stars: ✭ 156 (+14.71%)
rsGenrsGen is a Reverse Shell Payload Generator for hacking.
Stars: ✭ 71 (-47.79%)
GemsuranceGem vulnerability checker using rubysec/ruby-advisory-db
Stars: ✭ 207 (+52.21%)
JalescJust Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box
Stars: ✭ 152 (+11.76%)
Linkedin scraperA library that scrapes Linkedin for user data
Stars: ✭ 413 (+203.68%)
VulnfanaticA Binary Ninja plugin for vulnerability research.
Stars: ✭ 203 (+49.26%)
PapersSlowMist Vulnerability Research Advisories
Stars: ✭ 197 (+44.85%)
TrivyScanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues
Stars: ✭ 9,673 (+7012.5%)
Pwk Oscp Preparation RoadmapRoadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome
Stars: ✭ 142 (+4.41%)
Cve 2020 10199 cve 2020 10204CVE-2020-10199、CVE-2020-10204漏洞一键检测工具,图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.
Stars: ✭ 20 (-85.29%)
SmmExploitThe report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.
Stars: ✭ 98 (-27.94%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-81.62%)
Laravel UsersA Users Management Package that includes all necessary routes, views, models, and controllers for a user management dashboard and associated pages for managing Laravels built in user scaffolding. Built for Laravel 5.2, 5.3, 5.4, 5.5, 5.6, 5.7, 5.8, 6.0, 7.0 and 8.0.
Stars: ✭ 336 (+147.06%)
HowtohuntTutorials and Things to Do while Hunting Vulnerability.
Stars: ✭ 2,996 (+2102.94%)
AmassIn-depth Attack Surface Mapping and Asset Discovery
Stars: ✭ 1,693 (+1144.85%)
Bad PdfSteal Net-NTLM Hash using Bad-PDF
Stars: ✭ 748 (+450%)
github-reserved-namesGet a list, or check if a user or organization name is reserved by GitHub
Stars: ✭ 38 (-72.06%)
SingularityA DNS rebinding attack framework.
Stars: ✭ 621 (+356.62%)
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
Stars: ✭ 133 (-2.21%)
Xray一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Stars: ✭ 6,218 (+4472.06%)
IntelspyPerform automated network reconnaissance scans
Stars: ✭ 134 (-1.47%)
SecdevlabsA laboratory for learning secure web and mobile development in a practical manner.
Stars: ✭ 547 (+302.21%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-7.35%)
A2svAuto Scanning to SSL Vulnerability
Stars: ✭ 524 (+285.29%)
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120 (-11.76%)
Vulscanvulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486 (+257.35%)
Scilla🏴☠️ Information Gathering tool 🏴☠️ DNS / Subdomains / Ports / Directories enumeration
Stars: ✭ 116 (-14.71%)
YsoserialA proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Stars: ✭ 4,808 (+3435.29%)
PTEyePhantom eye——A passive business logic vulnerability auditing tool
Stars: ✭ 55 (-59.56%)
DvhmaDamn Vulnerable Hybrid Mobile App (DVHMA) is an hybrid mobile app (for Android) that intentionally contains vulnerabilities.
Stars: ✭ 180 (+32.35%)
FeroxbusterA fast, simple, recursive content discovery tool written in Rust.
Stars: ✭ 1,314 (+866.18%)
enum-phpEnumeration implementation for PHP
Stars: ✭ 45 (-66.91%)
Javadeserh2hcSample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
Stars: ✭ 361 (+165.44%)
Tidos FrameworkThe Offensive Manual Web Application Penetration Testing Framework.
Stars: ✭ 1,290 (+848.53%)
RbndrSimple DNS Rebinding Service
Stars: ✭ 343 (+152.21%)
docker-sftpSFTP Server for Docker
Stars: ✭ 118 (-13.24%)
FidlA sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research
Stars: ✭ 319 (+134.56%)
GowaptGo Web Application Penetration Test
Stars: ✭ 300 (+120.59%)
Enum4linuxpyEveryone's favorite SMB/SAMBA/CIFS enumeration tool ported over to Python.
Stars: ✭ 75 (-44.85%)
Borgert CmsBorgert is a CMS Open Source created with Laravel Framework 5.6
Stars: ✭ 298 (+119.12%)
AvpwnList of real-world threats against endpoint protection software
Stars: ✭ 179 (+31.62%)
AdaptADAPT is a tool that performs automated Penetration Testing for WebApps.
Stars: ✭ 179 (+31.62%)
examplesThis repository provides examples on how to use the @accounts-js packages.
Stars: ✭ 15 (-88.97%)
KratosNext-gen identity server (think Auth0, Okta, Firebase) with Ory-hardened authentication, MFA, FIDO2, profile management, identity schemas, social sign in, registration, account recovery, and IoT auth. Golang, headless, API-only - without templating or theming headaches.
Stars: ✭ 4,684 (+3344.12%)
GodnslogAn exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
Stars: ✭ 172 (+26.47%)
laravel-inforceA toolset to kickstart your application on top of Laravel Livewire, Laravel Jetstream and Spatie Permissions. LLoadout inforce is created using the TALL stack.
Stars: ✭ 12 (-91.18%)
OpencvdeviceenumeratorThis repository contains a class that allows the enumeration of video and audio devices in order to get the device IDs that are required to create a VideoCapture object inside OpenCV (in Windows).
Stars: ✭ 48 (-64.71%)
exploitsSome personal exploits/pocs
Stars: ✭ 52 (-61.76%)