CVE-2022-21907-http.sysProof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers
Stars: ✭ 67 (-86.1%)
Jira-LensFast and customizable vulnerability scanner For JIRA written in Python
Stars: ✭ 185 (-61.62%)
0xsp Mongoosea unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.
Stars: ✭ 419 (-13.07%)
ligolo-ngAn advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Stars: ✭ 418 (-13.28%)
MqueryYARA malware query accelerator (web frontend)
Stars: ✭ 264 (-45.23%)
ScoutScout - a Contactless Active Reconnaissance Tool
Stars: ✭ 48 (-90.04%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-25.31%)
FingerprintjsBrowser fingerprinting library with the highest accuracy and stability.
Stars: ✭ 15,481 (+3111.83%)
FUNDED NISLFUNDED is a novel learning framework for building vulnerability detection models.
Stars: ✭ 49 (-89.83%)
kubeadm-tfPoC; terraform + kubeadm
Stars: ✭ 25 (-94.81%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (-1.66%)
exprologProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
Stars: ✭ 131 (-72.82%)
PoC-ActiveXPoC ActiveX SVG Document Execution
Stars: ✭ 21 (-95.64%)
RtaRed team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.
Stars: ✭ 358 (-25.73%)
PirschPirsch is a drop-in, server-side, no-cookie, and privacy-focused analytics solution for Go.
Stars: ✭ 257 (-46.68%)
cansecwest2017No description or website provided.
Stars: ✭ 63 (-86.93%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-13.69%)
gradejsGradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.
Stars: ✭ 362 (-24.9%)
CertaintyAutomated cacert.pem management for PHP projects
Stars: ✭ 255 (-47.1%)
PocListAlibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5…
Stars: ✭ 1,004 (+108.3%)
FPStalkerRepo of code for FPStalker article
Stars: ✭ 24 (-95.02%)
ElectriceyeContinuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.
Stars: ✭ 255 (-47.1%)
rustcatRustcat(rcat) - The modern Port listener and Reverse shell
Stars: ✭ 505 (+4.77%)
Apache Ultimate Bad Bot BlockerApache Block Bad Bots, (Referer) Spam Referrer Blocker, Vulnerability Scanners, Malware, Adware, Ransomware, Malicious Sites, Wordpress Theme Detectors and Fail2Ban Jail for Repeat Offenders
Stars: ✭ 441 (-8.51%)
octovyTrivy based vulnerability management service
Stars: ✭ 51 (-89.42%)
SoteriaPlugin to block compilation when unapproved dependencies are used or code styling does not comply.
Stars: ✭ 36 (-92.53%)
waycupA minimal tool that hides your online assets from online security scanners, researchers and hackers.
Stars: ✭ 100 (-79.25%)
KatanaA Python Tool For google Hacking
Stars: ✭ 355 (-26.35%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (-28.22%)
AMEVulDetectorSmart Contract Vulnerability Detection From Pure Neural Network to Interpretable Graph Feature and Expert Pattern Fusion (IJCAI-21 Accepted)
Stars: ✭ 23 (-95.23%)
Xss Listener🕷️ XSS Listener is a penetration tool for easy to steal data with various XSS.
Stars: ✭ 414 (-14.11%)
aztarnaaztarna, a footprinting tool for robots.
Stars: ✭ 85 (-82.37%)
LogMePwnA fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
Stars: ✭ 362 (-24.9%)
DirbleFast directory scanning and scraping tool
Stars: ✭ 468 (-2.9%)
WordpresscanWPScan rewritten in Python + some WPSeku ideas
Stars: ✭ 456 (-5.39%)
GosecGolang security checker
Stars: ✭ 5,694 (+1081.33%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-20.75%)
ApiVulners Python API wrapper
Stars: ✭ 313 (-35.06%)
awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-92.95%)
foxy-proxyA Proof of Capacity proxy which supports solo and pool mining upstreams
Stars: ✭ 33 (-93.15%)
Badkarmanetwork reconnaissance toolkit
Stars: ✭ 353 (-26.76%)
PLtools整理一些内网常用渗透小工具
Stars: ✭ 227 (-52.9%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-82.16%)
Gg Shield ActionGitGuardian Shield GitHub Action - Find exposed credentials in your commits
Stars: ✭ 248 (-48.55%)
Gr3eNoXAdvanced Vulnerability Scanner Tool
Stars: ✭ 42 (-91.29%)
FindwebshellfindWebshell是一款基于python开发的webshell检测工具。
Stars: ✭ 246 (-48.96%)
klustair(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit
Stars: ✭ 15 (-96.89%)
CobraSource Code Security Audit (源代码安全审计)
Stars: ✭ 2,802 (+481.33%)
Umbraco-RCEUmbraco CMS 7.12.4 - (Authenticated) Remote Code Execution
Stars: ✭ 61 (-87.34%)
WifiIndoorPositioning🚀 Evaluation of Location of the device using RSSI values of Access Points and Reference point which are made from Wi-Fi readings
Stars: ✭ 83 (-82.78%)
ObsidianSailboatNmap and NSE command line wrapper in the style of Metasploit
Stars: ✭ 36 (-92.53%)
Fwanalyzera tool to analyze filesystem images for security
Stars: ✭ 382 (-20.75%)
ProwlerProwler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.
Stars: ✭ 4,561 (+846.27%)
swisscheeseExploits for YARA 3.7.1 & 3.8.1
Stars: ✭ 26 (-94.61%)
PyCPUCentral Processing Unit Information Gathering Tool
Stars: ✭ 19 (-96.06%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (-36.31%)