tomcter😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.
Stars: ✭ 18 (-66.67%)
SpoilerwallSpoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!
Stars: ✭ 754 (+1296.3%)
NetcatNetCat for Windows
Stars: ✭ 463 (+757.41%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (+279.63%)
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Stars: ✭ 85 (+57.41%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (+757.41%)
ReverseapkQuickly analyze and reverse engineer Android packages
Stars: ✭ 419 (+675.93%)
nmappyNmapPy - Python implementation of Nmap
Stars: ✭ 27 (-50%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+1490.74%)
revshfuzzA tool for fuzzing for ports that allow outgoing connections
Stars: ✭ 18 (-66.67%)
ApkurlgrepExtract endpoints from APK files
Stars: ✭ 405 (+650%)
wifi-deautherA fully automatic wifi deauther coded in Python
Stars: ✭ 25 (-53.7%)
Behold3r👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱
Stars: ✭ 29 (-46.3%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (+646.3%)
altprobecollector for XDR and security posture service
Stars: ✭ 62 (+14.81%)
OctopusOpen source pre-operation C2 server based on python and powershell
Stars: ✭ 449 (+731.48%)
PowerProxyPowerShell SOCKS proxy with reverse proxy capabilities
Stars: ✭ 29 (-46.3%)
Net-MonGet notified for new devices on your network
Stars: ✭ 22 (-59.26%)
Censys Subdomain Finder⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
Stars: ✭ 402 (+644.44%)
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+12644.44%)
Scanlessonline port scan scraper
Stars: ✭ 875 (+1520.37%)
DiamorphineLKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (+1242.59%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-57.41%)
RedTeam toolkitRed Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.
Stars: ✭ 301 (+457.41%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (+633.33%)
SQLbitJust another script for automatize boolean-based blind SQL injections. (Demo)
Stars: ✭ 30 (-44.44%)
Security whitepapersCollection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Stars: ✭ 644 (+1092.59%)
transportc2PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.
Stars: ✭ 22 (-59.26%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (+605.56%)
HostEnumeratorA tool that automates the process of enumeration
Stars: ✭ 29 (-46.3%)
MilkyA .NET Standard library for pentesting web apps against credential stuffing attacks.
Stars: ✭ 49 (-9.26%)
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (+120.37%)
ARL-NPoC集漏洞验证和任务运行的一个框架
Stars: ✭ 73 (+35.19%)
Powershell RatPython based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.
Stars: ✭ 636 (+1077.78%)
DumbDumain Bruteforcer - a fast and flexible domain bruteforcer
Stars: ✭ 54 (+0%)
RaasnetOpen-Source Ransomware As A Service for Linux, MacOS and Windows
Stars: ✭ 371 (+587.04%)
auth analyzerBurp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
Stars: ✭ 77 (+42.59%)
Raven-StormRaven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
Stars: ✭ 235 (+335.19%)
hassh-utilshassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hassh)
Stars: ✭ 41 (-24.07%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+6779.63%)
MsdatMSDAT: Microsoft SQL Database Attacking Tool
Stars: ✭ 621 (+1050%)
EvilUSBQuick utility to craft executables for pentesting and managing reverse shells
Stars: ✭ 33 (-38.89%)
Dradis CeDradis Framework: Colllaboration and reporting for IT Security teams
Stars: ✭ 443 (+720.37%)
NSE-scriptsNSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (+94.44%)
WiFi-ProjectPre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️
Stars: ✭ 22 (-59.26%)
DnsbruteDNS Sub-domain brute forcer, in Python + gevent
Stars: ✭ 40 (-25.93%)
Linuxprivcheckerlinuxprivchecker.py -- a Linux Privilege Escalation Check Script
Stars: ✭ 715 (+1224.07%)
FfufFast web fuzzer written in Go
Stars: ✭ 5,687 (+10431.48%)