GohacktoolsHacker tools on Go (Golang)
Stars: ✭ 1,303 (+578.65%)
LolbasLiving Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Stars: ✭ 1,506 (+684.38%)
YetiYour Everyday Threat Intelligence
Stars: ✭ 1,037 (+440.1%)
SwiftnessxA cross-platform note-taking & target-tracking app for penetration testers.
Stars: ✭ 673 (+250.52%)
AwesomeA curated list of awesome things related to TheHive & Cortex
Stars: ✭ 88 (-54.17%)
FameFAME Automates Malware Evaluation
Stars: ✭ 663 (+245.31%)
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
Stars: ✭ 133 (-30.73%)
SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+3484.38%)
Pentesting toolkit🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
Stars: ✭ 1,268 (+560.42%)
HabuHacking Toolkit
Stars: ✭ 635 (+230.73%)
Litmus testDetecting ATT&CK techniques & tactics for Linux
Stars: ✭ 190 (-1.04%)
Ctf ToolsUseful CTF Tools
Stars: ✭ 190 (-1.04%)
WazuhWazuh - The Open Source Security Platform
Stars: ✭ 3,154 (+1542.71%)
RecsechRecsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (-9.9%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (-22.4%)
Snopfsnopf USB password token
Stars: ✭ 113 (-41.15%)
Security ListPenetrum LLC opensource security tool list.
Stars: ✭ 619 (+222.4%)
GsilGitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
Stars: ✭ 1,764 (+818.75%)
IntelmqIntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
Stars: ✭ 611 (+218.23%)
ResponseMonzo's real-time incident response and reporting tool ⚡️
Stars: ✭ 1,252 (+552.08%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (+213.54%)
Web ShellsSome of the best web shells that you might need!
Stars: ✭ 162 (-15.62%)
Vxscanpython3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
Stars: ✭ 1,244 (+547.92%)
Scanners BoxA powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑
Stars: ✭ 5,590 (+2811.46%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-32.29%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (+194.79%)
DufflebagSearch exposed EBS volumes for secrets
Stars: ✭ 177 (-7.81%)
Pentesting CookbookA set of recipes useful in pentesting and red teaming scenarios
Stars: ✭ 82 (-57.29%)
OpcdeOPCDE Cybersecurity Conference Materials
Stars: ✭ 538 (+180.21%)
TcpflowTCP/IP packet demultiplexer. Download from:
Stars: ✭ 1,231 (+541.15%)
Dexcalibur[Official] Android reverse engineering tool focused on dynamic instrumentation automation. Powered by Frida. It disassembles dex, analyzes it statically, generates hooks, discovers reflected methods, stores intercepted data and does new things from it. Its aim is to be an all-in-one Android reverse engineering platform.
Stars: ✭ 512 (+166.67%)
LokiLoki - Simple IOC and Incident Response Scanner
Stars: ✭ 2,217 (+1054.69%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (+169.27%)
Network Threats TaxonomyMachine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies
Stars: ✭ 79 (-58.85%)
Operative Frameworkoperative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.
Stars: ✭ 511 (+166.15%)
SilenttrinityAn asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
Stars: ✭ 1,767 (+820.31%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (+160.42%)
Lw YaraYara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies
Stars: ✭ 78 (-59.37%)
WhidsOpen Source EDR for Windows
Stars: ✭ 188 (-2.08%)
SeqboxA single file container/archive that can be reconstructed even after total loss of file system structures
Stars: ✭ 480 (+150%)
Radio HackboxPoC tool to demonstrate vulnerabilities in wireless input devices
Stars: ✭ 74 (-61.46%)
DronesploitDrone pentesting framework console
Stars: ✭ 473 (+146.35%)
SwiftnessA note-taking macOS app for penetration-testers.
Stars: ✭ 124 (-35.42%)
AutosploitAutomated Mass Exploiter
Stars: ✭ 4,500 (+2243.75%)
Nrf24 PlaysetSoftware tools for Nordic Semiconductor nRF24-based devices like wireless keyboards, mice, and presenters
Stars: ✭ 73 (-61.98%)
NebulousadNebulousAD automated credential auditing tool.
Stars: ✭ 158 (-17.71%)
MftecmdParses $MFT from NTFS file systems
Stars: ✭ 45 (-76.56%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-41.15%)
PystatAdvanced Netstat Using Python For Windows
Stars: ✭ 44 (-77.08%)
Ios Triageincident response tool for iOS devices
Stars: ✭ 42 (-78.12%)
Outisoutis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).
Stars: ✭ 111 (-42.19%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+425.52%)
Analyst CasefileMaltego CaseFile entities for information security investigations, malware analysis and incident response
Stars: ✭ 41 (-78.65%)
Nordvpn NetworkmanagerA CLI tool for automating the importing, securing and usage of NordVPN (and in the future, more) OpenVPN servers through NetworkManager.
Stars: ✭ 111 (-42.19%)
ToxicAn ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)
Stars: ✭ 987 (+414.06%)