SubWalkerSimultaneously execute various subdomain enumeration tools and aggregate results.
Stars: ✭ 26 (-88.84%)
BrutexAutomatically brute force all services running on a target.
Stars: ✭ 974 (+318.03%)
gwdomainssub domain wild card filtering tool
Stars: ✭ 38 (-83.69%)
TuktukTool for catching and logging different types of requests.
Stars: ✭ 174 (-25.32%)
OffensiveCloudDistributionLeverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.
Stars: ✭ 86 (-63.09%)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (+318.45%)
DeadtrapAn OSINT tool to gather information about the real owner of a phone number
Stars: ✭ 73 (-68.67%)
SwiftnessA note-taking macOS app for penetration-testers.
Stars: ✭ 124 (-46.78%)
ldap2jsonThe ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.
Stars: ✭ 56 (-75.97%)
Ge.mine.nuCode from my old page ge.mine.nu
Stars: ✭ 31 (-86.7%)
BugHunterIDPara pencari bug / celah kemanan bisa bergabung.
Stars: ✭ 72 (-69.1%)
IntruderpayloadsA collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Stars: ✭ 2,779 (+1092.7%)
nozakiHTTP fuzzer engine security oriented
Stars: ✭ 37 (-84.12%)
GogitdumperDump exposed HTTP .git fast
Stars: ✭ 27 (-88.41%)
SubcertSubcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
Stars: ✭ 58 (-75.11%)
SarenkaOSINT tool - gets data from services like shodan, censys etc. in one app
Stars: ✭ 120 (-48.5%)
kube-scanKubernetes Scanner
Stars: ✭ 32 (-86.27%)
ComcastSimulating shitty network connections so you can build better systems.
Stars: ✭ 7,703 (+3206.01%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-21.89%)
Ssti Payloads🎯 Server Side Template Injection Payloads
Stars: ✭ 150 (-35.62%)
Chaos🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.
Stars: ✭ 1,168 (+401.29%)
auto-recon-ngAutomated script to run all modules for a specified list of domains, netblocks or company name
Stars: ✭ 17 (-92.7%)
Urlhuntera recon tool that allows searching on URLs that are exposed via shortener services
Stars: ✭ 934 (+300.86%)
PassivehunterSubdomain discovery using the power of 'The Rapid7 Project Sonar datasets'
Stars: ✭ 83 (-64.38%)
GofingerprintGoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
Stars: ✭ 120 (-48.5%)
tipocketA toolkit for testing TiDB
Stars: ✭ 122 (-47.64%)
Recon RavenReconnaissance tool of Penetration test & Bug Bounty
Stars: ✭ 18 (-92.27%)
Virtual-HostModified Nuclei Templates Version to FUZZ Host Header
Stars: ✭ 38 (-83.69%)
BasecrackDecode All Bases - Base Scheme Decoder
Stars: ✭ 196 (-15.88%)
mailcatFind existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬
Stars: ✭ 219 (-6.01%)
BlockadeDocker-based utility for testing network failures and partitions in distributed applications
Stars: ✭ 834 (+257.94%)
chaospyChaotic attractors (Lorenz, Rossler, Rikitake etc.)
Stars: ✭ 47 (-79.83%)
GreconYour Google Recon is Now Automated
Stars: ✭ 119 (-48.93%)
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (+239.48%)
nerdbugFull Nuclei automation script with logic explanation.
Stars: ✭ 153 (-34.33%)
GospiderGospider - Fast web spider written in Go
Stars: ✭ 785 (+236.91%)
HackeronedbThe unofficial HackerOne disclosure Timeline
Stars: ✭ 117 (-49.79%)
AstraAstra is a tool to find URLs and secrets inside a webpage/files
Stars: ✭ 187 (-19.74%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+232.62%)
Contact.shAn OSINT tool to find contacts in order to report security vulnerabilities.
Stars: ✭ 216 (-7.3%)
AshokAshok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .
Stars: ✭ 109 (-53.22%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (+226.18%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+399.57%)
ProcspyPython tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..
Stars: ✭ 272 (+16.74%)
casCellular Automata Simulator
Stars: ✭ 22 (-90.56%)
MuxyChaos engineering tool for simulating real-world distributed system failures
Stars: ✭ 756 (+224.46%)
shaniaScan secrets from Continuous Integration Build Logs
Stars: ✭ 54 (-76.82%)
ChaosThe Chaos Programming Language
Stars: ✭ 171 (-26.61%)
CloudbruteAwesome cloud enumerator
Stars: ✭ 268 (+15.02%)
MassdnsA high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Stars: ✭ 2,093 (+798.28%)
FindsploitFind exploits in local and online databases instantly
Stars: ✭ 1,160 (+397.85%)
Project BlackPentest/BugBounty progress control with scanning modules
Stars: ✭ 257 (+10.3%)
ReconcatA small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.
Stars: ✭ 66 (-71.67%)
UnChainA tool to find redirection chains in multiple URLs
Stars: ✭ 77 (-66.95%)