NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (+54.55%)
HabuHacking Toolkit
Stars: ✭ 635 (+724.68%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (+515.58%)
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (+33.77%)
TigersharkBilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.
Stars: ✭ 212 (+175.32%)
Mitm Scripts🔄 A collection of mitmproxy inline scripts
Stars: ✭ 109 (+41.56%)
LscriptThe LAZY script will make your life easier, and of course faster.
Stars: ✭ 3,056 (+3868.83%)
KaboomA tool to automate penetration tests
Stars: ✭ 322 (+318.18%)
FuxiPenetration Testing Platform
Stars: ✭ 1,103 (+1332.47%)
ErodirA fast web directory/file enumeration tool written in Rust
Stars: ✭ 94 (+22.08%)
EvillimiterTool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (+892.21%)
DarksideTool Information Gathering & social engineering Write By [Python,JS,PHP]
Stars: ✭ 159 (+106.49%)
Darkspiritz🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (+184.42%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (+92.21%)
Lockdoor Framework🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
Stars: ✭ 677 (+779.22%)
SubscraperSubdomain enumeration through various techniques
Stars: ✭ 265 (+244.16%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+4303.9%)
sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (+81.82%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+281.82%)
PasshuntPasshunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
Stars: ✭ 961 (+1148.05%)
Eyes.shLet's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"
Stars: ✭ 89 (+15.58%)
One Lin3rGives you one-liners that aids in penetration testing operations, privilege escalation and more
Stars: ✭ 1,259 (+1535.06%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (+68.83%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (+71.43%)
Eyes👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️
Stars: ✭ 38 (-50.65%)
Pwncatpwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)
Stars: ✭ 904 (+1074.03%)
In Spectre MeltdownThis tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in
Stars: ✭ 86 (+11.69%)
Babysploit👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍
Stars: ✭ 883 (+1046.75%)
Msploitego Pentesting suite for Maltego based on data in a Metasploit database
Stars: ✭ 124 (+61.04%)
PakuriPenetration test Achieve Knowledge Unite Rapid Interface
Stars: ✭ 125 (+62.34%)
goLazagneGo library for credentials recovery
Stars: ✭ 177 (+129.87%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-63.64%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+6259.74%)
YAPSYet Another PHP Shell - The most complete PHP reverse shell
Stars: ✭ 35 (-54.55%)
WebkillerTool Information Gathering Write By Python.
Stars: ✭ 300 (+289.61%)
LiteOTPMulti OTP Spam Amp/Paralell threads
Stars: ✭ 50 (-35.06%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (+484.42%)
Badkarmanetwork reconnaissance toolkit
Stars: ✭ 353 (+358.44%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+9310.39%)
Punk.pyunix SSH post-exploitation 1337 tool
Stars: ✭ 107 (+38.96%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-67.53%)
crtfinderFast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques
Stars: ✭ 96 (+24.68%)
xecaPowerShell payload generator
Stars: ✭ 103 (+33.77%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-50.65%)
ligolo-ngAn advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Stars: ✭ 418 (+442.86%)
DevBrute-A Password Brute ForcerDevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.
Stars: ✭ 91 (+18.18%)
lavaMicrosoft Azure Exploitation Framework
Stars: ✭ 46 (-40.26%)
hathiA dictionary attack tool for PostgreSQL and MSSQL
Stars: ✭ 33 (-57.14%)
SSI Extra MaterialsIn my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them
Stars: ✭ 42 (-45.45%)
KaliIntelligenceSuiteKali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.
Stars: ✭ 58 (-24.68%)
LAZYPARIAHA tool for generating reverse shell payloads on the fly.
Stars: ✭ 121 (+57.14%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+84.42%)
tryhackme-ctfTryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.
Stars: ✭ 140 (+81.82%)
Intel-OneCommand line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…
Stars: ✭ 23 (-70.13%)