Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (-45.58%)
Cheatsheet GodPenetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Stars: ✭ 3,521 (+289.49%)
DiamorphineLKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)
Stars: ✭ 725 (-19.8%)
HershellHershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (-51.11%)
QuiverQuiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-84.51%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (-83.41%)
Evil WinrmThe ultimate WinRM shell for hacking/pentesting
Stars: ✭ 2,251 (+149%)
Zap CliA simple tool for interacting with OWASP ZAP from the commandline.
Stars: ✭ 166 (-81.64%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (-71.68%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (-68.25%)
WpforceWordpress Attack Suite
Stars: ✭ 633 (-29.98%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-52.77%)
PasscatPasswords Recovery Tool
Stars: ✭ 164 (-81.86%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+155.75%)
CovertutilsA framework for Backdoor development!
Stars: ✭ 424 (-53.1%)
EhtoolsWi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.
Stars: ✭ 422 (-53.32%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-79.87%)
SocialfishPhishing Tool & Information Collector
Stars: ✭ 2,522 (+178.98%)
WebmapA Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing
Stars: ✭ 188 (-79.2%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (-70.24%)
LnkupGenerates malicious LNK file payloads for data exfiltration
Stars: ✭ 205 (-77.32%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (-65.71%)
Powershell RatPython based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.
Stars: ✭ 636 (-29.65%)
ArchstrikeAn Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Stars: ✭ 401 (-55.64%)
Txtoolan easy pentesting tool.
Stars: ✭ 246 (-72.79%)
Cloud BusterA Cloudflare resolver that works
Stars: ✭ 128 (-85.84%)
Platypus🔨 A modern multiple reverse shell sessions manager wrote in go
Stars: ✭ 559 (-38.16%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (-63.72%)
DirbleFast directory scanning and scraping tool
Stars: ✭ 468 (-48.23%)
StegcrackerSteganography brute-force utility to uncover hidden data inside files
Stars: ✭ 396 (-56.19%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-84.29%)
reverieAutomated Pentest Tools Designed For Parrot Linux
Stars: ✭ 77 (-91.48%)
PeekABooPeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
Stars: ✭ 120 (-86.73%)
WebkillerTool Information Gathering Write By Python.
Stars: ✭ 300 (-66.81%)
ChimeraChimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Stars: ✭ 463 (-48.78%)
Hacker Roadmap📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.
Stars: ✭ 7,752 (+757.52%)
SpoilerwallSpoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!
Stars: ✭ 754 (-16.59%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (-56.75%)
goLazagneGo library for credentials recovery
Stars: ✭ 177 (-80.42%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+310.95%)
PXXTFFramework For Exploring kernel vulnerabilities, network vulnerabilities ✨
Stars: ✭ 23 (-97.46%)
PayloadsallthethingsA list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 32,909 (+3540.38%)
BifrostBifrost C2. Open-source post-exploitation using Discord API
Stars: ✭ 37 (-95.91%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (-67.48%)
rsmReverse shell manager using tmux and ncat
Stars: ✭ 29 (-96.79%)
awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-96.24%)
BlackmambaC2/post-exploitation framework
Stars: ✭ 544 (-39.82%)
Suid3numA standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
Stars: ✭ 342 (-62.17%)
NetcatNetCat for Windows
Stars: ✭ 463 (-48.78%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-48.78%)
Black Hat RustApplied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB
Stars: ✭ 331 (-63.38%)
ChashellChashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.
Stars: ✭ 742 (-17.92%)
MsdatMSDAT: Microsoft SQL Database Attacking Tool
Stars: ✭ 621 (-31.31%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (-60.73%)