ScapyScapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.
Stars: ✭ 6,932 (+2706.48%)
DeephackPoC code from DEF CON 25 presentation
Stars: ✭ 222 (-10.12%)
ContainersshContainerSSH: Launch containers on demand
Stars: ✭ 195 (-21.05%)
Fudgec2FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.
Stars: ✭ 191 (-22.67%)
Bundler AuditPatch-level verification for Bundler
Stars: ✭ 2,393 (+868.83%)
ZbangzBang is a risk assessment tool that detects potential privileged account threats
Stars: ✭ 224 (-9.31%)
PypowershellxrayPython script to decode common encoded PowerShell scripts
Stars: ✭ 192 (-22.27%)
Privacy.sexyOpen-source tool to enforce privacy & security best-practices on Windows and macOS, because privacy is sexy 🍑🍆
Stars: ✭ 221 (-10.53%)
Werdlists⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
Stars: ✭ 216 (-12.55%)
KnaryA simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support
Stars: ✭ 187 (-24.29%)
Rebel FrameworkAdvanced and easy to use penetration testing framework 💣🔎
Stars: ✭ 183 (-25.91%)
Vulny Code Static AnalysisPython script to detect vulnerabilities inside PHP source code using static analysis, based on regex
Stars: ✭ 207 (-16.19%)
FingerprinterCMS/LMS/Library etc Versions Fingerprinter
Stars: ✭ 227 (-8.1%)
Zbn安全编排与自动化响应平台
Stars: ✭ 201 (-18.62%)
DnscapNetwork capture utility designed specifically for DNS traffic
Stars: ✭ 234 (-5.26%)
GenetGraphical network analyzer powered by web technologies
Stars: ✭ 195 (-21.05%)
InsiderStatic Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
Stars: ✭ 216 (-12.55%)
WinsharkA wireshark plugin to instrument ETW
Stars: ✭ 191 (-22.67%)
CobraSource Code Security Audit (源代码安全审计)
Stars: ✭ 2,802 (+1034.41%)
Apk Meditmemory search and patch tool on debuggable apk without root & ndk
Stars: ✭ 189 (-23.48%)
Iot PtA Virtual environment for Pentesting IoT Devices
Stars: ✭ 218 (-11.74%)
Attack monitorEndpoint detection & Malware analysis software
Stars: ✭ 186 (-24.7%)
FsfFile Scanning Framework
Stars: ✭ 228 (-7.69%)
MoslBash script to audit and fix macOS Catalina (10.15.x) security settings
Stars: ✭ 215 (-12.96%)
Unwebpack SourcemapExtract uncompiled, uncompressed SPA code from Webpack source maps.
Stars: ✭ 176 (-28.74%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-28.34%)
Ladon大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+1078.54%)
LimitrrLight NodeJS rate limiting and response delaying using Redis - including Express middleware.
Stars: ✭ 203 (-17.81%)
OblivionData leak checker & OSINT Tool
Stars: ✭ 237 (-4.05%)
PwnbackBurp Extender plugin that generates a sitemap of a website using Wayback Machine
Stars: ✭ 203 (-17.81%)
ProgpilotA static analysis tool for security
Stars: ✭ 226 (-8.5%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (-19.43%)
StrongboxA secret manager for AWS
Stars: ✭ 243 (-1.62%)
ReplicaGhidra Analysis Enhancer 🐉
Stars: ✭ 194 (-21.46%)
H1domainsHackerOne "in scope" domains
Stars: ✭ 223 (-9.72%)
Awesome BbhtA bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.
Stars: ✭ 190 (-23.08%)
Android Pin BruteforceUnlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)
Stars: ✭ 217 (-12.15%)
Aws Auto RemediateOpen source application to instantly remediate common security issues through the use of AWS Config
Stars: ✭ 191 (-22.67%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (-10.12%)
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+1292.31%)
RevshellgenReverse shell generator written in Python 3.
Stars: ✭ 190 (-23.08%)
AaiaAWS Identity and Access Management Visualizer and Anomaly Finder
Stars: ✭ 218 (-11.74%)
Security ScriptsA collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)
Stars: ✭ 188 (-23.89%)
KubestrikerA Blazing fast Security Auditing tool for Kubernetes
Stars: ✭ 213 (-13.77%)
Pypacker📦 The fastest and simplest packet manipulation lib for Python
Stars: ✭ 216 (-12.55%)
Awesome Shodan Queries🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
Stars: ✭ 2,758 (+1016.6%)
EbpfeBPF Utilities, Maps, and more
Stars: ✭ 238 (-3.64%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-26.32%)
DufflebagSearch exposed EBS volumes for secrets
Stars: ✭ 177 (-28.34%)
Shed.NET runtime inspector
Stars: ✭ 229 (-7.29%)
StegcloakHide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
Stars: ✭ 2,379 (+863.16%)
FindwebshellfindWebshell是一款基于python开发的webshell检测工具。
Stars: ✭ 246 (-0.4%)
Grapefruit(WIP) Runtime Application Instruments for iOS. Previously Passionfruit
Stars: ✭ 235 (-4.86%)
CameradarCameradar hacks its way into RTSP videosurveillance cameras
Stars: ✭ 2,775 (+1023.48%)