Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (-94.96%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (-95.9%)
Ssh Mitmssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation
Stars: ✭ 335 (-90.78%)
Ethereum ListsA repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.
Stars: ✭ 300 (-91.74%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (-3.6%)
Awesome Network StuffResources about network security, including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc。More than 1700 open source tools for now. Post incoming.
Stars: ✭ 578 (-84.09%)
SpoofcheckSimple script that checks a domain for email protections
Stars: ✭ 437 (-87.97%)
IsthislegitDashboard to collect, analyze, and respond to reported phishing emails.
Stars: ✭ 251 (-93.09%)
mpsMPS is a high-performance HTTP(S) proxy library that supports forward proxies, reverse proxies, man-in-the-middle proxies, tunnel proxies, Websocket proxies. MPS 是一个高性能HTTP(s)中间代理库,它支持正向代理、反向代理、中间人代理、隧道代理、Websocket代理
Stars: ✭ 64 (-98.24%)
EspooferAn email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
Stars: ✭ 273 (-92.49%)
RmiscoutRMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Stars: ✭ 296 (-91.85%)
Recon My WayThis repository created for personal use and added tools from my latest blog post.
Stars: ✭ 271 (-92.54%)
Certificates🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Stars: ✭ 3,693 (+1.62%)
PhishapiComprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!
Stars: ✭ 272 (-92.52%)
MitmfFramework for Man-In-The-Middle attacks
Stars: ✭ 3,277 (-9.82%)
StreamingphishPython-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.
Stars: ✭ 271 (-92.54%)
Cheatsheet GodPenetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Stars: ✭ 3,521 (-3.11%)
MqueryYARA malware query accelerator (web frontend)
Stars: ✭ 264 (-92.74%)
MercureMercure is a tool for security managers who want to train their colleague to phishing.
Stars: ✭ 262 (-92.79%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+25.51%)
Salt ScannerLinux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration
Stars: ✭ 261 (-92.82%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (-92.07%)
StalkphishStalkPhish - The Phishing kits stalker, harvesting phishing kits for investigations.
Stars: ✭ 256 (-92.96%)
CertaintyAutomated cacert.pem management for PHP projects
Stars: ✭ 255 (-92.98%)
KraneKubernetes RBAC static Analysis & visualisation tool
Stars: ✭ 254 (-93.01%)
Wifi Pumpkin DeprecatedDEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3
Stars: ✭ 2,964 (-18.44%)
HeraldingCredentials catching honeypot
Stars: ✭ 297 (-91.83%)
Recon PipelineAn automated target reconnaissance pipeline.
Stars: ✭ 278 (-92.35%)
Annon.apiConfigurable API gateway that acts as a reverse proxy with a plugin system.
Stars: ✭ 306 (-91.58%)
TurboA lightweight microservice tool, turn your grpc|thrift APIs into HTTP APIs!
Stars: ✭ 275 (-92.43%)
WirespyFramework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).
Stars: ✭ 293 (-91.94%)
Open Proxy一键部署被墙网站反向代理; 免翻墙访问被禁网站
Stars: ✭ 274 (-92.46%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (-1.05%)
Infini GatewayINFINI-GATEWAY(极限网关), a high performance and lightweight gateway written in golang, for elasticsearch and his friends.
Stars: ✭ 272 (-92.52%)
VulcainFast and idiomatic client-driven REST APIs.
Stars: ✭ 3,190 (-12.22%)
NerveNERVE Continuous Vulnerability Scanner
Stars: ✭ 267 (-92.65%)
ExcelntdonutExcel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.
Stars: ✭ 301 (-91.72%)
DnstwistDomain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Stars: ✭ 3,124 (-14.03%)
Lunnelfast reverse-proxy
Stars: ✭ 293 (-91.94%)
RaptorWeb-based Source Code Vulnerability Scanner
Stars: ✭ 314 (-91.36%)
Vddos ProtectionWelcome to vDDoS, a HTTP(S) DDoS Protection Reverse Proxy. Thank you for using!
Stars: ✭ 257 (-92.93%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (-92.1%)
Phishing.databasePhishing Domains, urls websites and threats database. We use the PyFunceble testing tool to validate the status of all known Phishing domains and provide stats to reveal how many unique domains used for Phishing are still active.
Stars: ✭ 296 (-91.85%)
SpyGenTrojan 🐍 (keylogger, take screenshots, open your webcam) 🔓
Stars: ✭ 115 (-96.84%)
ElectriceyeContinuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Stars: ✭ 255 (-92.98%)
Traitor⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket
Stars: ✭ 3,473 (-4.43%)
Awesome Windows Red Team A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams
Stars: ✭ 308 (-91.52%)
SoteriaPlugin to block compilation when unapproved dependencies are used or code styling does not comply.
Stars: ✭ 36 (-99.01%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (-91.83%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (-6.69%)
MicrosoftWontFixListA list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
Stars: ✭ 854 (-76.5%)
OpenVAS-DockerA Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
Stars: ✭ 16 (-99.56%)
CloudfruntA tool for identifying misconfigured CloudFront domains
Stars: ✭ 281 (-92.27%)
box-appServerThe Staff-Manager App Server for Enterprise Token Safe BOX
Stars: ✭ 22 (-99.39%)
mitm-playMan in the middle using Playwright
Stars: ✭ 13 (-99.64%)
H2csmugglerHTTP Request Smuggling over HTTP/2 Cleartext (h2c)
Stars: ✭ 292 (-91.96%)
SecurecodeboxsecureCodeBox (SCB) - continuous secure delivery out of the box
Stars: ✭ 279 (-92.32%)
anytunnel内网穿透,内网穿透代理服务器,商用内网穿透代理系统,内网穿透平台,内网穿透多用户会员系统。
Stars: ✭ 115 (-96.84%)