Raven-StormRaven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
Stars: ✭ 235 (-49.68%)
Pentesting CookbookA set of recipes useful in pentesting and red teaming scenarios
Stars: ✭ 82 (-82.44%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (-77.52%)
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+317.34%)
Mitmap📡 A python program to create a fake AP and sniff data.
Stars: ✭ 1,526 (+226.77%)
WirespyFramework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).
Stars: ✭ 293 (-37.26%)
HOUDINIHundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.
Stars: ✭ 791 (+69.38%)
Cheatsheet GodPenetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Stars: ✭ 3,521 (+653.96%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+670.02%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-13.7%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-6.85%)
Top25 ParameterFor basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
Stars: ✭ 388 (-16.92%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (-3.43%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-8.57%)
MetabigorIntelligence tool but without API key
Stars: ✭ 424 (-9.21%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (-18.42%)
SqlmapAutomatic SQL injection and database takeover tool
Stars: ✭ 21,907 (+4591.01%)
Dref DNS Rebinding Exploitation Framework
Stars: ✭ 423 (-9.42%)
SecuritymanageframworkSecurity Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Stars: ✭ 378 (-19.06%)
PacketwhisperPacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.
Stars: ✭ 405 (-13.28%)
BruteCredential stuffing engine built for security professionals
Stars: ✭ 435 (-6.85%)
Elecv2p一款基于 NodeJS,可通过 JS 修改网络请求,以及定时运行脚本或 SHELL 指令的网络工具。
Stars: ✭ 401 (-14.13%)
OctopusOpen source pre-operation C2 server based on python and powershell
Stars: ✭ 449 (-3.85%)
ArchstrikeAn Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Stars: ✭ 401 (-14.13%)
GoohakAutomatically Launch Google Hacking Queries Against A Target Domain
Stars: ✭ 432 (-7.49%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (-15.2%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-0.86%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (-16.27%)
Wadcoms.github.ioWADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.
Stars: ✭ 431 (-7.71%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-18.2%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (-3.64%)
Java8 CheatsheetA Java 8+ Cheat Sheet for functional programming
Stars: ✭ 381 (-18.42%)
CovertutilsA framework for Backdoor development!
Stars: ✭ 424 (-9.21%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+948.61%)
RaasnetOpen-Source Ransomware As A Service for Linux, MacOS and Windows
Stars: ✭ 371 (-20.56%)
EhtoolsWi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.
Stars: ✭ 422 (-9.64%)
Javascript CheatsheetLearn the basic terminologies, concepts and syntax of JavaScript
Stars: ✭ 270 (-42.18%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+791.22%)
ReverseapkQuickly analyze and reverse engineer Android packages
Stars: ✭ 419 (-10.28%)
Rustscan🤖 The Modern Port Scanner 🤖
Stars: ✭ 5,218 (+1017.34%)
WssipApplication for capturing, modifying and sending custom WebSocket data from client to server and vice versa.
Stars: ✭ 373 (-20.13%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-10.92%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (-20.77%)
RdpasssprayPython3 tool to perform password spraying using RDP
Stars: ✭ 368 (-21.2%)
Betwixt⚡ Web Debugging Proxy based on Chrome DevTools Network panel.
Stars: ✭ 4,316 (+824.2%)
Node Tutorial☺️Some of the node tutorial -《Node学习笔记》
Stars: ✭ 364 (-22.06%)