AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Stars: ✭ 163 (+254.35%)
FindsploitFind exploits in local and online databases instantly
Stars: ✭ 1,160 (+2421.74%)
HolyTipsA Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Stars: ✭ 1,210 (+2530.43%)
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+4136.96%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (+186.96%)
Rfd CheckerRFD Checker - security CLI tool to test Reflected File Download issues
Stars: ✭ 56 (+21.74%)
project-blackPentest/BugBounty progress control with scanning modules
Stars: ✭ 279 (+506.52%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+2017.39%)
spellbookFramework for rapid development and reusable of security tools
Stars: ✭ 67 (+45.65%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-47.83%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-23.91%)
Project BlackPentest/BugBounty progress control with scanning modules
Stars: ✭ 257 (+458.7%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-6.52%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+208.7%)
TuktukTool for catching and logging different types of requests.
Stars: ✭ 174 (+278.26%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (+456.52%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (+613.04%)
Pentest GuidePenetration tests guide based on OWASP including test cases, resources and examples.
Stars: ✭ 1,316 (+2760.87%)
rejigTurn your VPS into an attack box
Stars: ✭ 33 (-28.26%)
PayloadsAllA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 31 (-32.61%)
leaky-pathsA collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
Stars: ✭ 507 (+1002.17%)
Reconky-Automated Bash ScriptReconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (+263.04%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (+573.91%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+969.57%)
LazyreconAn automated approach to performing recon for bug bounty hunting and penetration testing.
Stars: ✭ 282 (+513.04%)
RedcloudAutomated Red Team Infrastructure deployement using Docker
Stars: ✭ 551 (+1097.83%)
PentaOpen source all-in-one CLI tool to semi-automate pentesting.
Stars: ✭ 130 (+182.61%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-36.96%)
Sec ToolsDocker images for infosec tools
Stars: ✭ 135 (+193.48%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+71441.3%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+1167.39%)
Musicode🎶 Markup language for music creation and analysis! -- https://hlorenzi.github.io/musicode/
Stars: ✭ 34 (-26.09%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+1828.26%)
SnoopSnoop — инструмент разведки на основе открытых данных (OSINT world)
Stars: ✭ 886 (+1826.09%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+2093.48%)
Grab.jsfast TCP banner grabbing with node.js
Stars: ✭ 33 (-28.26%)
FilterbypassBrowser's XSS Filter Bypass Cheat Sheet
Stars: ✭ 884 (+1821.74%)
Jodel Web[PHP] JodelBlue is a Web-App and Browser-Client for the Jodel App. No registration required! Browse Jodels all over the world.
Stars: ✭ 15 (-67.39%)
Midiflip🎹 MIDI music mayhem - flip, transpose, and arbitrarily remap pitches in MIDI files
Stars: ✭ 33 (-28.26%)
DracnmapDracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.
Stars: ✭ 861 (+1771.74%)
AwsbucketdumpSecurity Tool to Look For Interesting Files in S3 Buckets
Stars: ✭ 1,021 (+2119.57%)
Alumna[Alpha release of v3] Development platform for humans / Plataforma de desenvolvimento para humanos
Stars: ✭ 32 (-30.43%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+1767.39%)
Pwn jenkinsNotes about attacking Jenkins servers
Stars: ✭ 841 (+1728.26%)
LitecloudUser management system for the server (Home Cloud).
Stars: ✭ 26 (-43.48%)
Node Scalable Blob StoreA file system blob store that is designed to prevent conflicts when used with a distributed file system or storage area network
Stars: ✭ 31 (-32.61%)
Urlhuntera recon tool that allows searching on URLs that are exposed via shortener services
Stars: ✭ 934 (+1930.43%)
Express BoilerplateA fast, simple Node.js/Express + MongoDB + Vue.js web app boilerplate project
Stars: ✭ 25 (-45.65%)
Lite Readerself-hosted Lightweight News Reader
Stars: ✭ 30 (-34.78%)
Neural NeighborsA simple web application for browsing similar images
Stars: ✭ 23 (-50%)
SubdomainizerA tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
Stars: ✭ 915 (+1889.13%)