NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+2912.5%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+4496.88%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (+290.63%)
K8cscanK8Cscan大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用,程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本,支持Cobalt Strike联动
Stars: ✭ 693 (+982.81%)
Reconspider🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
Stars: ✭ 621 (+870.31%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (+64.06%)
PhoniaPhonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.
Stars: ✭ 221 (+245.31%)
SandmapNmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.
Stars: ✭ 1,180 (+1743.75%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (+545.31%)
A2svAuto Scanning to SSL Vulnerability
Stars: ✭ 524 (+718.75%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+810.94%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+1421.88%)
HorusecHorusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Stars: ✭ 311 (+385.94%)
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (+1782.81%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+1223.44%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+3512.5%)
WhatcmsCMS Detection and Exploit Kit based on Whatcms.org API
Stars: ✭ 205 (+220.31%)
Droid Hunter(deprecated) Android application vulnerability analysis and Android pentest tool
Stars: ✭ 256 (+300%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+2750%)
Vaultswiss army knife for hackers
Stars: ✭ 346 (+440.63%)
K8toolsK8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Stars: ✭ 4,173 (+6420.31%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+695.31%)
Appinfoscanner一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Stars: ✭ 424 (+562.5%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (+1098.44%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+1301.56%)
DronesploitDrone pentesting framework console
Stars: ✭ 473 (+639.06%)
ShellshockhunterIt's a simple tool for test vulnerability shellshock
Stars: ✭ 52 (-18.75%)
InstainsaneMulti-threaded Instagram Brute Forcer (100 attemps at once)
Stars: ✭ 475 (+642.19%)
Packer FuzzerPacker Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
Stars: ✭ 753 (+1076.56%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (+320.31%)
DeadtrapAn OSINT tool to gather information about the real owner of a phone number
Stars: ✭ 73 (+14.06%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+11221.88%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (+95.31%)
HellraiserVulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
Stars: ✭ 413 (+545.31%)
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (+165.63%)
Ntlmscanscan for NTLM directories
Stars: ✭ 141 (+120.31%)
Ladon大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+4448.44%)
EnteletaorMessage Queue & Broker Injection tool
Stars: ✭ 139 (+117.19%)
RoninRonin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits or Payloads, Scanners, etc, via Repositories.
Stars: ✭ 220 (+243.75%)
Aws ReconMulti-threaded AWS inventory collection tool with a focus on security-relevant resources and metadata.
Stars: ✭ 203 (+217.19%)
I18next ScannerScan your code, extract translation keys/values, and merge them into i18n resource files.
Stars: ✭ 259 (+304.69%)
BillcipherInformation Gathering tool for a Website or IP address
Stars: ✭ 332 (+418.75%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+5373.44%)
Jok3rJok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Stars: ✭ 645 (+907.81%)
Pythempentest framework
Stars: ✭ 1,060 (+1556.25%)
JaelesThe Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (+1576.56%)
IshellLibrary for creating interactive cli applications.
Stars: ✭ 1,127 (+1660.94%)
Flask KonchAn improved shell command for the Flask CLI
Stars: ✭ 65 (+1.56%)
SlackcatCLI utility to post files and command output to slack
Stars: ✭ 1,127 (+1660.94%)
Terraform Security ScanRun a security scan on your terraform with the very nice https://github.com/liamg/tfsec
Stars: ✭ 64 (+0%)
M Cli Swiss Army Knife for macOS
Stars: ✭ 8,646 (+13409.38%)
Tunnelblickctl🔒 Command-line interface for Tunnelblick
Stars: ✭ 64 (+0%)
BoscoA microservice helper
Stars: ✭ 63 (-1.56%)
ImdbtrIMDb on terminal.
Stars: ✭ 63 (-1.56%)
BranchsiteCLI tool for publishing your static website to a separate branch
Stars: ✭ 65 (+1.56%)
Sub Tv CliDownloading your series subtitles via terminal 📺
Stars: ✭ 63 (-1.56%)
Run WhenRun tasks based on "Git diff" changes 🏃 ➕ ➖
Stars: ✭ 63 (-1.56%)
Node Installed CheckChecks that all dependencies in your package.json have supported versions installed and complies with your specified node engine version range
Stars: ✭ 67 (+4.69%)