RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Stars: ✭ 156 (-30.67%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-19.11%)
JalescJust Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box
Stars: ✭ 152 (-32.44%)
Capsulecorp PentestVagrant VirtualBox environment for conducting an internal network penetration test
Stars: ✭ 214 (-4.89%)
WebhashcatHashcat web interface
Stars: ✭ 151 (-32.89%)
JwtcatA CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
Stars: ✭ 181 (-19.56%)
Doxboxweb-based OSINT and reconaissance toolkit
Stars: ✭ 202 (-10.22%)
WincmdfuWindows one line commands that make life easier, shortcuts and command line fu.
Stars: ✭ 145 (-35.56%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-21.33%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-36%)
Darkspiritz🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (-2.67%)
RfoutletControl 433Mhz Rf power outlets from a Raspberry Pi
Stars: ✭ 140 (-37.78%)
QuiverQuiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-37.78%)
TrackerjackerLike nmap for mapping wifi networks you're not connected to, plus device tracking
Stars: ✭ 2,307 (+925.33%)
NetwormPython network worm that spreads on the local network and gives the attacker control of these machines.
Stars: ✭ 135 (-40%)
HacktricksWelcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Stars: ✭ 3,741 (+1562.67%)
EvilosxAn evil RAT (Remote Administration Tool) for macOS / OS X.
Stars: ✭ 1,826 (+711.56%)
XorpassEncoder to bypass WAF filters using XOR operations
Stars: ✭ 134 (-40.44%)
Nimscan🚀 Fast Port Scanner 🚀
Stars: ✭ 134 (-40.44%)
BetterbackdoorA backdoor with a multitude of features.
Stars: ✭ 195 (-13.33%)
DedsploitNetwork protocol auditing framework
Stars: ✭ 133 (-40.89%)
NetjsonNetJSON is a data interchange format for encoding the basic building blocks of networks.
Stars: ✭ 171 (-24%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (-41.33%)
AaiaAWS Identity and Access Management Visualizer and Anomaly Finder
Stars: ✭ 218 (-3.11%)
ArcherysecCentralize Vulnerability Assessment and Management for DevSecOps Team
Stars: ✭ 1,802 (+700.89%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+927.56%)
Jsonpjsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.
Stars: ✭ 131 (-41.78%)
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-14.22%)
Attiny85RubberDucky like payloads for DigiSpark Attiny85
Stars: ✭ 169 (-24.89%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-42.22%)
LnkupGenerates malicious LNK file payloads for data exfiltration
Stars: ✭ 205 (-8.89%)
Poc T渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Stars: ✭ 1,722 (+665.33%)
DnstrickerA simple dns resolver of dns-record and web-record log server for pentesting
Stars: ✭ 128 (-43.11%)
Dns PersistDNS-Persist is a post-exploitation agent which uses DNS for command and control.
Stars: ✭ 191 (-15.11%)
Awesome Mobile SecurityAn effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
Stars: ✭ 1,837 (+716.44%)
EnumdbRelational database brute force and post exploitation tool for MySQL and MSSQL
Stars: ✭ 167 (-25.78%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-44%)
Django NetjsonconfigConfiguration manager for embedded devices, implemented as a reusable django-app
Stars: ✭ 213 (-5.33%)
SubrakeA Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.
Stars: ✭ 125 (-44.44%)
Pi snifferThe pocket-sized wireless sniffer
Stars: ✭ 122 (-45.78%)
GetjsA tool to fastly get all javascript sources/files
Stars: ✭ 190 (-15.56%)
Spaces FinderA tool to hunt for publicly accessible DigitalOcean Spaces
Stars: ✭ 122 (-45.78%)
PasscatPasswords Recovery Tool
Stars: ✭ 164 (-27.11%)
RatelRAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Stars: ✭ 121 (-46.22%)
O365reconretrieve information via O365 with a valid cred
Stars: ✭ 204 (-9.33%)
KnaryA simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support
Stars: ✭ 187 (-16.89%)
PycatPython network tool, similar to Netcat with custom features.
Stars: ✭ 162 (-28%)
Invoke ApexA PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
Stars: ✭ 162 (-28%)
ZerodoorA script written lazily for generating cross-platform backdoors on the go :)
Stars: ✭ 163 (-27.56%)
ShellabLinux and Windows shellcode enrichment utility
Stars: ✭ 225 (+0%)
Iot PtA Virtual environment for Pentesting IoT Devices
Stars: ✭ 218 (-3.11%)
Oscp Cheat SheetThis is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder
Stars: ✭ 216 (-4%)