SpiderfootSpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Stars: ✭ 6,882 (+520.56%)
KeyloggerA simple keylogger for Windows, Linux and Mac
Stars: ✭ 1,007 (-9.2%)
Security whitepapersCollection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
Stars: ✭ 644 (-41.93%)
CommoncrawlparserSimple multi threaded tool to extract domain related data from commoncrawl.org
Stars: ✭ 25 (-97.75%)
HabuHacking Toolkit
Stars: ✭ 635 (-42.74%)
OscpMy OSCP journey
Stars: ✭ 50 (-95.49%)
XsserCross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Stars: ✭ 606 (-45.36%)
Eloquent LdapA Laravel 5.1 package that first tries to log the user against the internal database if that fails, it tries against the configured LDAP/AD server.
Stars: ✭ 19 (-98.29%)
Platypus🔨 A modern multiple reverse shell sessions manager wrote in go
Stars: ✭ 559 (-49.59%)
SecuritySome of my security stuff and vulnerabilities. Nothing advanced. More to come.
Stars: ✭ 835 (-24.71%)
AwspxA graph-based tool for visualizing effective access and resource relationships in AWS environments.
Stars: ✭ 546 (-50.77%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (-2.52%)
BigbountyreconBigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Stars: ✭ 541 (-51.22%)
SessiongopherSessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.
Stars: ✭ 833 (-24.89%)
Red Teaming ToolkitThis repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Stars: ✭ 5,615 (+406.31%)
DirhuntFind web directories without bruteforce
Stars: ✭ 983 (-11.36%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-53.38%)
Sn0intSemi-automatic OSINT framework and package manager
Stars: ✭ 814 (-26.6%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (-54.1%)
SsrfmapSimple Server Side Request Forgery services enumeration tool.
Stars: ✭ 50 (-95.49%)
SprayingtoolkitScripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
Stars: ✭ 802 (-27.68%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (-54.91%)
GoscanInteractive Network Scanner
Stars: ✭ 795 (-28.31%)
OrgkitProvision a brand-new company with proper defaults in Windows, Offic365, and Azure
Stars: ✭ 490 (-55.82%)
Kill RouterFerramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.
Stars: ✭ 57 (-94.86%)
Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (+465.37%)
Dsinternals Directory Services Internals (DSInternals) PowerShell Module and Framework
Stars: ✭ 776 (-30.03%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+341.57%)
PingcastlePingCastle - Get Active Directory Security at 80% in 20% of the time
Stars: ✭ 775 (-30.12%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (-58.25%)
PrivesccheckPrivilege Escalation Enumeration Script for Windows
Stars: ✭ 1,032 (-6.94%)
PlumhoundBloodhound for Blue and Purple Teams
Stars: ✭ 452 (-59.24%)
PerunPerun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架
Stars: ✭ 773 (-30.3%)
NullinuxInternal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
Stars: ✭ 451 (-59.33%)
Dnn.azureadproviderThe DNN Azure Active Directory Provider is an Authentication provider for DNN Platform (formerly DotNetNuke) that uses Azure Active Directory OAuth2 authentication to authenticate users.
Stars: ✭ 21 (-98.11%)
FfufFast web fuzzer written in Go
Stars: ✭ 5,687 (+412.8%)
SpellbookMicro-framework for rapid development of reusable security tools
Stars: ✭ 53 (-95.22%)
FireelffireELF - Fileless Linux Malware Framework
Stars: ✭ 435 (-60.78%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-61.5%)
Scanlessonline port scan scraper
Stars: ✭ 875 (-21.1%)
CovertutilsA framework for Backdoor development!
Stars: ✭ 424 (-61.77%)
ExploitpackExploit Pack -The next generation exploit framework
Stars: ✭ 728 (-34.36%)
SleightEmpire HTTP(S) C2 redirector setup script
Stars: ✭ 44 (-96.03%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-62.49%)
Kubernetes GoatKubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
Stars: ✭ 868 (-21.73%)
AutordpwnThe Shadow Attack Framework
Stars: ✭ 688 (-37.96%)
CansinaWeb Content Discovery Tool
Stars: ✭ 709 (-36.07%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (-2.71%)
DeltaPROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK
Stars: ✭ 55 (-95.04%)
Pentest⛔️ offsec batteries included
Stars: ✭ 1,063 (-4.15%)