avainA Modular Framework for the Automated Vulnerability Analysis in IP-based Networks
Stars: ✭ 56 (-93.81%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (-68.25%)
crawleetWeb Recon & Exploitation Tool.
Stars: ✭ 48 (-94.69%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-95.24%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-97.46%)
Cloud BusterA Cloudflare resolver that works
Stars: ✭ 128 (-85.84%)
reverse-sshStatically-linked ssh server with reverse shell functionality for CTFs and such
Stars: ✭ 548 (-39.38%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+275.11%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-97.57%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (-50.11%)
RevsslA script that automates generation of OpenSSL reverse shells
Stars: ✭ 284 (-68.58%)
NovahotA webshell framework for penetration testers.
Stars: ✭ 284 (-68.58%)
EastExploits and Security Tools Framework 2.0.1
Stars: ✭ 283 (-68.69%)
Pentest EnvPentest environment deployer (kali linux + targets) using vagrant and chef.
Stars: ✭ 610 (-32.52%)
VanquishVanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
Stars: ✭ 449 (-50.33%)
LazyreconAn automated approach to performing recon for bug bounty hunting and penetration testing.
Stars: ✭ 282 (-68.81%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+246.35%)
GocaGoca Scanner
Stars: ✭ 281 (-68.92%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (-32.85%)
SitebrokerA cross-platform python based utility for information gathering and penetration testing automation!
Stars: ✭ 281 (-68.92%)
Okadminfinder3[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻
Stars: ✭ 279 (-69.14%)
HackbrowserdataDecrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Stars: ✭ 3,864 (+327.43%)
XsserCross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Stars: ✭ 606 (-32.96%)
FfufFast web fuzzer written in Go
Stars: ✭ 5,687 (+529.09%)
Penetration testing poc渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+326.77%)
CloudbunnyCloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.
Stars: ✭ 273 (-69.8%)
BruteCredential stuffing engine built for security professionals
Stars: ✭ 435 (-51.88%)
PerfusionExploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Stars: ✭ 272 (-69.91%)
PompemFind exploit tool
Stars: ✭ 786 (-13.05%)
PhishapiComprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!
Stars: ✭ 272 (-69.91%)
BeeloggerGenerate Gmail Emailing Keyloggers to Windows.
Stars: ✭ 605 (-33.08%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-51.88%)
CripsIP Tools To quickly get information about IP Address's, Web Pages and DNS records.
Stars: ✭ 272 (-69.91%)
GraphqlmapGraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.
Stars: ✭ 434 (-51.99%)
BlacknetFree advanced and modern Windows botnet with a nice and secure PHP panel.
Stars: ✭ 271 (-70.02%)
DotdotpwnDotDotPwn - The Directory Traversal Fuzzer
Stars: ✭ 601 (-33.52%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+225.44%)
Mr.sipSIP-Based Audit and Attack Tool
Stars: ✭ 266 (-70.58%)
Linuxprivcheckerlinuxprivchecker.py -- a Linux Privilege Escalation Check Script
Stars: ✭ 715 (-20.91%)
PowerhubA post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting
Stars: ✭ 431 (-52.32%)
Esp Rfid ToolA tool for logging data/testing devices with a Wiegand Interface. Can be used to create a portable RFID reader or installed directly into an existing installation. Provides access to a web based interface using WiFi in AP or Client mode. Will work with nearly all devices that contain a standard 5V Wiegand interface. Primary target group is 26-37bit HID Cards. Similar to the Tastic RFID Thief, Blekey, and ESPKey.
Stars: ✭ 262 (-71.02%)
FsocietyA Modular Penetration Testing Framework
Stars: ✭ 259 (-71.35%)
Wahh extrasThe Web Application Hacker's Handbook - Extra Content
Stars: ✭ 428 (-52.65%)
UptuxLinux privilege escalation checks (systemd, dbus, socket fun, etc)
Stars: ✭ 260 (-71.24%)
MetabigorIntelligence tool but without API key
Stars: ✭ 424 (-53.1%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (-72.35%)
Lyncsmashlocate and attack Lync/Skype for Business
Stars: ✭ 258 (-71.46%)
Project BlackPentest/BugBounty progress control with scanning modules
Stars: ✭ 257 (-71.57%)
HashtopolisA Hashcat wrapper for distributed hashcracking
Stars: ✭ 835 (-7.63%)
PrivescA collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
Stars: ✭ 786 (-13.05%)
Awesome Web Security🐶 A curated list of Web Security materials and resources.
Stars: ✭ 6,623 (+632.63%)
OpendoorOWASP WEB Directory Scanner
Stars: ✭ 586 (-35.18%)
Dref DNS Rebinding Exploitation Framework
Stars: ✭ 423 (-53.21%)
HOUDINIHundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.
Stars: ✭ 791 (-12.5%)