vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (-20.11%)
Web BrutatorFast Modular Web Interfaces Bruteforcer
Stars: ✭ 97 (-73.64%)
WirespyFramework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).
Stars: ✭ 293 (-20.38%)
Put2winScript to automate PUT HTTP method exploitation to get shell
Stars: ✭ 96 (-73.91%)
h1-searchTool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Stars: ✭ 58 (-84.24%)
Resource filesmosquito - Automating reconnaissance and brute force attacks
Stars: ✭ 95 (-74.18%)
auth analyzerBurp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
Stars: ✭ 77 (-79.08%)
PycatPython network tool, similar to Netcat with custom features.
Stars: ✭ 162 (-55.98%)
seahorseELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
Stars: ✭ 31 (-91.58%)
Invoke ApexA PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
Stars: ✭ 162 (-55.98%)
AcamarA Python3 based single-file subdomain enumerator
Stars: ✭ 89 (-75.82%)
PLtools整理一些内网常用渗透小工具
Stars: ✭ 227 (-38.32%)
EvilUSBQuick utility to craft executables for pentesting and managing reverse shells
Stars: ✭ 33 (-91.03%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (-32.07%)
behindflareThis tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF
Stars: ✭ 14 (-96.2%)
Firecrack🔥 Firecrack pentest tools: Facebook hacking random attack, deface, admin finder, bing dorking:
Stars: ✭ 157 (-57.34%)
BlackratBlackRAT - Java Based Remote Administrator Tool
Stars: ✭ 87 (-76.36%)
KeyfinderKeyfinder🔑 is a tool that let you find keys while surfing the web!
Stars: ✭ 250 (-32.07%)
Cheatsheet GodPenetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
Stars: ✭ 3,521 (+856.79%)
ThecollectiveThe Collective. A repo for a collection of red-team projects found mostly on Github.
Stars: ✭ 85 (-76.9%)
InsectsawakeNetwork Vulnerability Scanner
Stars: ✭ 252 (-31.52%)
Gitjacker🔪 Leak git repositories from misconfigured websites
Stars: ✭ 1,249 (+239.4%)
Pentesting CookbookA set of recipes useful in pentesting and red teaming scenarios
Stars: ✭ 82 (-77.72%)
RspetRSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
Stars: ✭ 251 (-31.79%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-12.5%)
Mobileapp Pentest CheatsheetThe Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
Stars: ✭ 3,051 (+729.08%)
GithacktoolsThe best Hacking and PenTesting tools installer on the world
Stars: ✭ 78 (-78.8%)
docker-webtopUbuntu, Alpine, Arch, and Fedora based Webtop images, Linux in a web browser supporting popular desktop environments.
Stars: ✭ 498 (+35.33%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (+224.46%)
RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Stars: ✭ 156 (-57.61%)
OscpOur OSCP repo: from popping shells to mental health.
Stars: ✭ 71 (-80.71%)
awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-90.76%)
Web2attackWeb hacking framework with tools, exploits by python
Stars: ✭ 152 (-58.7%)
PentestingazureappsScript samples from the book Pentesting Azure Applications (2018, No Starch Press)
Stars: ✭ 69 (-81.25%)
Juice Shop CtfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop
Stars: ✭ 238 (-35.33%)
GtfonowAutomatic privilege escalation for misconfigured capabilities, sudo and suid binaries
Stars: ✭ 68 (-81.52%)
CVE-2020-0688-ScannerQuick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.
Stars: ✭ 38 (-89.67%)
FrackerPHP function tracker
Stars: ✭ 234 (-36.41%)
NeedleThe iOS Security Testing Framework
Stars: ✭ 1,122 (+204.89%)
Docker Onion NmapScan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.
Stars: ✭ 345 (-6.25%)
FilesensorDynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具
Stars: ✭ 227 (-38.32%)
JalescJust Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box
Stars: ✭ 152 (-58.7%)
Kill RouterFerramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.
Stars: ✭ 57 (-84.51%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-94.02%)
Black Hat RustApplied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB
Stars: ✭ 331 (-10.05%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (-15.76%)
OverlordOverlord - Red Teaming Infrastructure Automation
Stars: ✭ 258 (-29.89%)
ObsidianSailboatNmap and NSE command line wrapper in the style of Metasploit
Stars: ✭ 36 (-90.22%)
AutosintTool to automate common OSINT tasks
Stars: ✭ 150 (-59.24%)
SpellbookMicro-framework for rapid development of reusable security tools
Stars: ✭ 53 (-85.6%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+851.9%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-92.39%)
WebhashcatHashcat web interface
Stars: ✭ 151 (-58.97%)
Lyncsmashlocate and attack Lync/Skype for Business
Stars: ✭ 258 (-29.89%)
transportc2PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.
Stars: ✭ 22 (-94.02%)
CrackmapextremeFor all your network pentesting needs
Stars: ✭ 148 (-59.78%)