MegplusAutomated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
Stars: ✭ 268 (+32.67%)
Pentesting BibleLearn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+4346.04%)
AboutsecurityA list of payload and bypass lists for penetration testing and red team infrastructure build.
Stars: ✭ 166 (-17.82%)
Project BlackPentest/BugBounty progress control with scanning modules
Stars: ✭ 257 (+27.23%)
BrokenlinkhijackerA Fast Broken Link Hijacker Tool written in Python
Stars: ✭ 45 (-77.72%)
WDIRGood resources about web security that I have read.
Stars: ✭ 14 (-93.07%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-37.62%)
SlicerA tool to automate the boring process of APK recon
Stars: ✭ 199 (-1.49%)
PixloadImage Payload Creating/Injecting tools
Stars: ✭ 586 (+190.1%)
Ecommerce Website Security ChecklistList of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.
Stars: ✭ 98 (-51.49%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+188.61%)
WriteupsThis repository contains writeups for various CTFs I've participated in (Including Hack The Box).
Stars: ✭ 61 (-69.8%)
Pcwt Stars: ✭ 46 (-77.23%)
PandorasBoxSecurity tool to quickly audit Public Box files and folders.
Stars: ✭ 56 (-72.28%)
SwiftnessA note-taking macOS app for penetration-testers.
Stars: ✭ 124 (-38.61%)
FavfreakMaking Favicon.ico based Recon Great again !
Stars: ✭ 564 (+179.21%)
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Stars: ✭ 163 (-19.31%)
EvabsAn open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.
Stars: ✭ 173 (-14.36%)
WosslOpenSSL对称算法、哈希校验、非对称算法、证书管理、SSL安全
Stars: ✭ 144 (-28.71%)
RedcloudAutomated Red Team Infrastructure deployement using Docker
Stars: ✭ 551 (+172.77%)
ORtesterOpen Redirect scanner - (out of date)
Stars: ✭ 24 (-88.12%)
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120 (-40.59%)
gitls🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline
Stars: ✭ 39 (-80.69%)
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (+42.08%)
EnigmaMultiplatform payload dropper
Stars: ✭ 180 (-10.89%)
ResourcesNo description or website provided.
Stars: ✭ 38 (-81.19%)
GofingerprintGoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
Stars: ✭ 120 (-40.59%)
PysploitRemote exploitation framework written in Python
Stars: ✭ 37 (-81.68%)
AndroidSecNotesAn actively maintained, Self curated notes related to android application security for security professionals, bugbounty hunters, pentesters, reverse engineer, and redteamers.
Stars: ✭ 140 (-30.69%)
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (-19.8%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-88.12%)
BrutexAutomatically brute force all services running on a target.
Stars: ✭ 974 (+382.18%)
GoaltdnsA permutation generation tool written in golang
Stars: ✭ 119 (-41.09%)
TegrarcmguiC++ GUI for TegraRcmSmash (Fusée Gelée exploit for Nintendo Switch)
Stars: ✭ 965 (+377.72%)
Gf SecretsSecret and/ credential patterns used for gf.
Stars: ✭ 96 (-52.48%)
BigbountyreconBigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
Stars: ✭ 541 (+167.82%)
3klconAutomation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
Stars: ✭ 189 (-6.44%)
EagleMultithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Stars: ✭ 85 (-57.92%)
TakeoverA tool for testing subdomain takeover possibilities at a mass scale.
Stars: ✭ 28 (-86.14%)
aneweranewer appends lines from stdin to a file if they don't already exist in the file. This is a rust version of https://github.com/tomnomnom/anew
Stars: ✭ 46 (-77.23%)
GreconYour Google Recon is Now Automated
Stars: ✭ 119 (-41.09%)
BroxyAn HTTP/HTTPS intercept proxy written in Go.
Stars: ✭ 912 (+351.49%)
Jira ScanCVE-2017-9506 - SSRF
Stars: ✭ 159 (-21.29%)
Learn365This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
Stars: ✭ 525 (+159.9%)
SnowcrashA polyglot payload generator
Stars: ✭ 143 (-29.21%)
HerculesHERCULES is a special payload generator that can bypass antivirus softwares.
Stars: ✭ 526 (+160.4%)
S3scannerScan for open AWS S3 buckets and dump the contents
Stars: ✭ 1,319 (+552.97%)
BlisqyVersion 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Stars: ✭ 179 (-11.39%)
RecsechRecsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .
Stars: ✭ 173 (-14.36%)
Aws ScannerScans a list of websites for Cloudfront or S3 Buckets
Stars: ✭ 93 (-53.96%)
Owasp VwadThe OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.
Stars: ✭ 487 (+141.09%)