evildorkEvildork targeting your fiancee👁️
Stars: ✭ 46 (-98.91%)
HackbrowserdataDecrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Stars: ✭ 3,864 (-8.04%)
Web-IotaIota is a web scraper which can find all of the images and links/suburls on a webpage
Stars: ✭ 60 (-98.57%)
misp-osint-collectionCollection of best practices to add OSINT into MISP and/or MISP communities
Stars: ✭ 54 (-98.71%)
webapp-wordlistsThis repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.
Stars: ✭ 306 (-92.72%)
common-osint-modelConverting data from services like Censys and Shodan to a common data model
Stars: ✭ 35 (-99.17%)
LAZYPARIAHA tool for generating reverse shell payloads on the fly.
Stars: ✭ 121 (-97.12%)
arcreactoropen-source intelligence gathering for SIEMs <3
Stars: ✭ 36 (-99.14%)
Awesome-HTTPRequestSmugglingA curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
Stars: ✭ 97 (-97.69%)
onedrive user enumonedrive user enumeration - pentest tool to enumerate valid onedrive users
Stars: ✭ 223 (-94.69%)
VirusX5The Most Powerful Fake Page Redirecting tool...
Stars: ✭ 15 (-99.64%)
gwdomainssub domain wild card filtering tool
Stars: ✭ 38 (-99.1%)
dnstakeDNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
Stars: ✭ 723 (-82.79%)
gradejsGradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.
Stars: ✭ 362 (-91.39%)
gitls🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline
Stars: ✭ 39 (-99.07%)
ZKShSSearch shodan without any knowledge about its queries
Stars: ✭ 37 (-99.12%)
pywhatcmsUnofficial WhatCMS API package
Stars: ✭ 42 (-99%)
PerfusionExploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Stars: ✭ 272 (-93.53%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (-97.5%)
gatsby-plugin-cspA Gatsby plugin which adds strict Content Security Policy to your project.
Stars: ✭ 40 (-99.05%)
findcdnfindCDN is a tool created to help accurately identify what CDN a domain is using.
Stars: ✭ 64 (-98.48%)
SecurityExplainedSecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Stars: ✭ 301 (-92.84%)
fleexFleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.
Stars: ✭ 181 (-95.69%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (-92.93%)
tracerTAutomated Google dorking with custom search engines
Stars: ✭ 26 (-99.38%)
Go DorkThe fastest dork scanner written in Go.
Stars: ✭ 274 (-93.48%)
WordlistsInfosec Wordlists
Stars: ✭ 271 (-93.55%)
jsleaka Go code to detect leaks in JS files via regex patterns
Stars: ✭ 111 (-97.36%)
ldap2jsonThe ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.
Stars: ✭ 56 (-98.67%)
rustcatRustcat(rcat) - The modern Port listener and Reverse shell
Stars: ✭ 505 (-87.98%)
frisbeeCollect email addresses by crawling search engine results.
Stars: ✭ 29 (-99.31%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-99.33%)
Secure headersManages application of security headers with many safe defaults
Stars: ✭ 2,942 (-29.99%)
DNSnitchUses viewdns.info to perform a reverse NS lookup on a specified nameserver and attempts zone transfers on discovered domains
Stars: ✭ 18 (-99.57%)
vapivAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Stars: ✭ 674 (-83.96%)
BugHunterIDPara pencari bug / celah kemanan bisa bergabung.
Stars: ✭ 72 (-98.29%)
ipsourcebypassThis Python script can be used to bypass IP source restrictions using HTTP headers.
Stars: ✭ 326 (-92.24%)
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (-96.67%)
requests-ip-rotatorA Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
Stars: ✭ 323 (-92.31%)
Blind-SSRFNuclei Templates to reproduce Cracking the lens's Research
Stars: ✭ 111 (-97.36%)
sherlock🔎 Find usernames across social networks.
Stars: ✭ 47 (-98.88%)
PwnedPasswordsCheckerSearch (offline) if your password (NTLM or SHA1 format) has been leaked (HIBP passwords list v8)
Stars: ✭ 52 (-98.76%)
spellbookFramework for rapid development and reusable of security tools
Stars: ✭ 67 (-98.41%)
Wordlist404Small but effective wordlist for brute-forcing and discovering hidden things.
Stars: ✭ 101 (-97.6%)
koa-subdomainSimple and lightweight Koa middleware to handle multilevel and wildcard subdomains
Stars: ✭ 23 (-99.45%)
ReverseIPRuby based reverse IP-lookup tool.
Stars: ✭ 44 (-98.95%)
CripsIP Tools To quickly get information about IP Address's, Web Pages and DNS records.
Stars: ✭ 272 (-93.53%)
sx🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (-69.85%)
occliUnofficial Command Line Interface for OpenCorporates
Stars: ✭ 18 (-99.57%)
nozakiHTTP fuzzer engine security oriented
Stars: ✭ 37 (-99.12%)
H2csmugglerHTTP Request Smuggling over HTTP/2 Cleartext (h2c)
Stars: ✭ 292 (-93.05%)
transportc2PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.
Stars: ✭ 22 (-99.48%)
PinaakA vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
Stars: ✭ 69 (-98.36%)
MaltegoMaltego compilation of various assets, local transforms and helpful scripts
Stars: ✭ 80 (-98.1%)