Race The WebTests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
Stars: ✭ 385 (-20.12%)
RedTeam toolkitRed Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.
Stars: ✭ 301 (-37.55%)
behindflareThis tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF
Stars: ✭ 14 (-97.1%)
PhirauteeA proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.
Stars: ✭ 96 (-80.08%)
ospdOSPd is a framework for vulnerability scanners which share the same communication protocol: OSP (Open Scanner Protocol)
Stars: ✭ 32 (-93.36%)
Poccollecta plenty of poc based on python
Stars: ✭ 289 (-40.04%)
CVE-2022-21907-http.sysProof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
Stars: ✭ 67 (-86.1%)
FingerprintjsBrowser fingerprinting library with the highest accuracy and stability.
Stars: ✭ 15,481 (+3111.83%)
FUNDED NISLFUNDED is a novel learning framework for building vulnerability detection models.
Stars: ✭ 49 (-89.83%)
checkwebIdentificador de Seguridad Web para Pentester
Stars: ✭ 19 (-96.06%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+626.76%)
crackena fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust
Stars: ✭ 192 (-60.17%)
ChroniclePublic append-only ledger microservice built with Slim Framework
Stars: ✭ 429 (-11%)
aztarnaaztarna, a footprinting tool for robots.
Stars: ✭ 85 (-82.37%)
CVE-2020-8597CVE-2020-8597 pppd buffer overflow poc
Stars: ✭ 48 (-90.04%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (-23.24%)
DifuzeFuzzer for Linux Kernel Drivers
Stars: ✭ 285 (-40.87%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (-6.64%)
DirbleFast directory scanning and scraping tool
Stars: ✭ 468 (-2.9%)
WordpresscanWPScan rewritten in Python + some WPSeku ideas
Stars: ✭ 456 (-5.39%)
GosecGolang security checker
Stars: ✭ 5,694 (+1081.33%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-20.75%)
ApiVulners Python API wrapper
Stars: ✭ 313 (-35.06%)
awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-92.95%)
vminspectTools for inspecting disk images
Stars: ✭ 25 (-94.81%)
exploitsSome personal exploits/pocs
Stars: ✭ 52 (-89.21%)
W5Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Stars: ✭ 367 (-23.86%)
Okadminfinder3[ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻
Stars: ✭ 279 (-42.12%)
vulnerability-dbVulnerability database and package search for sources such as OSV, NVD, GitHub and npm.
Stars: ✭ 36 (-92.53%)
BurpaBurp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).
Stars: ✭ 427 (-11.41%)
wifibangwifi attacks suite
Stars: ✭ 56 (-88.38%)
DgfraudA Deep Graph-based Toolbox for Fraud Detection
Stars: ✭ 281 (-41.7%)
wazuh-packagesWazuh - Tools for packages creation
Stars: ✭ 54 (-88.8%)
Poc Exppoc or exp of android vulnerability
Stars: ✭ 362 (-24.9%)
Certificates🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
Stars: ✭ 3,693 (+666.18%)
PocOrExp in Github聚合Github上已有的Poc或者Exp,CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.
Stars: ✭ 544 (+12.86%)
GobyAttack surface mapping
Stars: ✭ 446 (-7.47%)
iust deep fuzzAdvanced file format fuzzer based-on deep neural language models.
Stars: ✭ 36 (-92.53%)
HackbrowserdataDecrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Stars: ✭ 3,864 (+701.66%)
VytalBrowser extension to spoof timezone, geolocation, locale and user agent.
Stars: ✭ 1,449 (+200.62%)
graphw00fgraphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
Stars: ✭ 260 (-46.06%)
PerfusionExploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)
Stars: ✭ 272 (-43.57%)
patton-cliThe knife of the Admin & Security auditor
Stars: ✭ 42 (-91.29%)
Deimosc2DeimosC2 is a Golang command and control framework for post-exploitation.
Stars: ✭ 423 (-12.24%)
Android-Task-InjectionTask Hijacking in Android (somebody call it also StrandHogg vulnerability)
Stars: ✭ 52 (-89.21%)
DependencycheckOWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
Stars: ✭ 3,571 (+640.87%)
NETNOOBA simple program written in bash that contains basic Linux network tools, information gathering tools and scanning tools.
Stars: ✭ 105 (-78.22%)
Umbraco-RCEUmbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
Stars: ✭ 61 (-87.34%)
WifiIndoorPositioning🚀 Evaluation of Location of the device using RSSI values of Access Points and Reference point which are made from Wi-Fi readings
Stars: ✭ 83 (-82.78%)
ObsidianSailboatNmap and NSE command line wrapper in the style of Metasploit
Stars: ✭ 36 (-92.53%)
Fwanalyzera tool to analyze filesystem images for security
Stars: ✭ 382 (-20.75%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+846.27%)
swisscheeseExploits for YARA 3.7.1 & 3.8.1
Stars: ✭ 26 (-94.61%)