Dradis CeDradis Framework: Colllaboration and reporting for IT Security teams
Stars: ✭ 443 (+6.24%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-94%)
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+666.91%)
Awesome InfosecA curated list of awesome infosec courses and training resources.
Stars: ✭ 3,779 (+806.24%)
Hacker Roadmap📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.
Stars: ✭ 7,752 (+1758.99%)
HabuHacking Toolkit
Stars: ✭ 635 (+52.28%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-93.29%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-89.69%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-94.24%)
ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-85.13%)
Sbt Dependency CheckSBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 🌈
Stars: ✭ 187 (-55.16%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+605.52%)
NmapIdiomatic nmap library for go developers
Stars: ✭ 391 (-6.24%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-85.37%)
Awesome VulnerableA curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.
Stars: ✭ 133 (-68.11%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-56.35%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-65.95%)
volana🌒 Shell command obfuscation to avoid detection systems
Stars: ✭ 38 (-90.89%)
juumla🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.
Stars: ✭ 107 (-74.34%)
argusArgus Advanced Remote & Local Keylogger For macOS and Windows
Stars: ✭ 87 (-79.14%)
oscp-omnibusA collection of resources I'm using while working toward the OSCP
Stars: ✭ 46 (-88.97%)
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (-71.46%)
GhostwriterThe SpecterOps project management and reporting engine
Stars: ✭ 394 (-5.52%)
1earnffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Stars: ✭ 3,715 (+790.89%)
haiti🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (-31.18%)
ggtfobinsGet GTFOBins info about a given exploit from the command line
Stars: ✭ 27 (-93.53%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: ✭ 137 (-67.15%)
vsauditVOIP Security Audit Framework
Stars: ✭ 104 (-75.06%)
SecuritymanageframworkSecurity Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.
Stars: ✭ 378 (-9.35%)
maalikFeature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-82.01%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (+898.08%)
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (-41.97%)
clair-cicdMaking CoreOS' Clair easily work in CI/CD pipelines
Stars: ✭ 27 (-93.53%)
LiteOTPMulti OTP Spam Amp/Paralell threads
Stars: ✭ 50 (-88.01%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-91.61%)
PXXTFFramework For Exploring kernel vulnerabilities, network vulnerabilities ✨
Stars: ✭ 23 (-94.48%)
SifterSifter aims to be a fully loaded Op Centre for Pentesters
Stars: ✭ 403 (-3.36%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-96.64%)
Slackor A Golang implant that uses Slack as a command and control server
Stars: ✭ 392 (-6%)
ElectriceyeContinuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Stars: ✭ 255 (-38.85%)
DorknetSelenium powered Python script to automate searching for vulnerable web apps.
Stars: ✭ 256 (-38.61%)
Mr.sipSIP-Based Audit and Attack Tool
Stars: ✭ 266 (-36.21%)
Smart-Contract-Security-AuditsCertified Smart Contract Audits (Ethereum, Hyperledger, xDAI, Huobi ECO Chain, Binance Smart Chain, Fantom, EOS, Tezos) by Chainsulting
Stars: ✭ 325 (-22.06%)
SubscraperSubdomain enumeration through various techniques
Stars: ✭ 265 (-36.45%)
ArchstrikeAn Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Stars: ✭ 401 (-3.84%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (+650.84%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+740.05%)
GetaltnameExtract subdomains from SSL certificates in HTTPS sites.
Stars: ✭ 320 (-23.26%)
GosintOSINT Swiss Army Knife
Stars: ✭ 401 (-3.84%)
Black Hat RustApplied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB
Stars: ✭ 331 (-20.62%)
BusterAn advanced tool for email reconnaissance
Stars: ✭ 387 (-7.19%)