Bucket-FlawsBucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
Stars: ✭ 43 (-91.55%)
Auto-AWD🚩 CTF AWD framework
Stars: ✭ 24 (-95.28%)
KatanaA Python Tool For google Hacking
Stars: ✭ 355 (-30.26%)
ggtfobinsGet GTFOBins info about a given exploit from the command line
Stars: ✭ 27 (-94.7%)
ctf4noobsResumão da massa sobre Capture the Flag.
Stars: ✭ 18 (-96.46%)
juumla🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.
Stars: ✭ 107 (-78.98%)
TomatoToolsTomatoTools 一款CTF杂项利器,支持36种常见编码和密码算法的加密和解密,31种密文的分析和识别,支持自动提取flag,自定义插件等。
Stars: ✭ 66 (-87.03%)
BerylEnigma一个为渗透测试与CTF而制作的工具集,主要实现一些加解密的功能。
Stars: ✭ 329 (-35.36%)
GofingerprintGoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.
Stars: ✭ 120 (-76.42%)
spellbookFramework for rapid development and reusable of security tools
Stars: ✭ 67 (-86.84%)
DnstrickerA simple dns resolver of dns-record and web-record log server for pentesting
Stars: ✭ 128 (-74.85%)
bentoBento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
Stars: ✭ 74 (-85.46%)
Langhost👻 A LAN dropbox chatbot controllable via Telegram
Stars: ✭ 324 (-36.35%)
reconmapVulnerability assessment and penetration testing automation and reporting platform for teams.
Stars: ✭ 242 (-52.46%)
challengesSecurity challenges and CTFs created by the Penultimate team.
Stars: ✭ 13 (-97.45%)
ImageStrikeImageStrike是一款用于CTF中图片隐写的综合利用工具
Stars: ✭ 118 (-76.82%)
SubcertSubcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
Stars: ✭ 58 (-88.61%)
gwdomainssub domain wild card filtering tool
Stars: ✭ 38 (-92.53%)
OtsecaOpen source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.
Stars: ✭ 416 (-18.27%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (-71.71%)
GreconYour Google Recon is Now Automated
Stars: ✭ 119 (-76.62%)
GetaltnameExtract subdomains from SSL certificates in HTTPS sites.
Stars: ✭ 320 (-37.13%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (-30.26%)
nuubiNuubi Tools (Information-ghatering|Scanner|Recon.)
Stars: ✭ 76 (-85.07%)
frida setupOne-click installer for Frida and Burp certs for SSL Pinning bypass
Stars: ✭ 47 (-90.77%)
AirgeddonThis is a multi-use bash script for Linux systems to audit wireless networks.
Stars: ✭ 3,830 (+652.46%)
BbreconPython library and CLI for the Bug Bounty Recon API
Stars: ✭ 169 (-66.8%)
pwnscriptsVery simple script(s) to hasten binary exploit creation
Stars: ✭ 66 (-87.03%)
Jwt Hack🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
Stars: ✭ 172 (-66.21%)
HacktricksWelcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Stars: ✭ 3,741 (+634.97%)
T1tl3A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title
Stars: ✭ 14 (-97.25%)
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (-83.5%)
targetsA collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.
Stars: ✭ 85 (-83.3%)
pyc2bytecodeA Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)
Stars: ✭ 70 (-86.25%)
PentestingMisc. Public Reports of Penetration Testing and Security Audits.
Stars: ✭ 24 (-95.28%)
osmedeus-workflowCommunity Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
Stars: ✭ 26 (-94.89%)
ctf-writeupsWriteups of CTF challenges
Stars: ✭ 19 (-96.27%)
blackhat-pythonBlack Hat Python workshop for Disobey 2019
Stars: ✭ 27 (-94.7%)
Zbn安全编排与自动化响应平台
Stars: ✭ 201 (-60.51%)
MosintAn automated e-mail OSINT tool
Stars: ✭ 184 (-63.85%)
WhatcmsCMS Detection and Exploit Kit based on Whatcms.org API
Stars: ✭ 205 (-59.72%)
IkyOSINT Project
Stars: ✭ 203 (-60.12%)
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-62.08%)
jsleaka Go code to detect leaks in JS files via regex patterns
Stars: ✭ 111 (-78.19%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (-18.86%)
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (-43.61%)
SimpleKeyloggerSimple Keylogger with smtp to send emails on your account using python works on linux and Windows
Stars: ✭ 32 (-93.71%)
Crypto封装多种CTF和平时常见加密及编码C#类库
Stars: ✭ 20 (-96.07%)
SecurityExplainedSecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.
Stars: ✭ 301 (-40.86%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-95.68%)
doraFind exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Stars: ✭ 229 (-55.01%)
webcocktailAn automatic and lightweight web application scanning tool for CTF.
Stars: ✭ 28 (-94.5%)
ResourcesNo description or website provided.
Stars: ✭ 38 (-92.53%)
quick-recon.pyDo some quick reconnaissance on a domain-based web-application
Stars: ✭ 13 (-97.45%)
cf-checkCloudFlare Checker written in Go
Stars: ✭ 147 (-71.12%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (-6.88%)