Rfd CheckerRFD Checker - security CLI tool to test Reflected File Download issues
Stars: ✭ 56 (-54.1%)
OsrframeworkOSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.
Stars: ✭ 534 (+337.7%)
MitakaA browser extension for OSINT search
Stars: ✭ 483 (+295.9%)
Infosec getting startedA collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.
Stars: ✭ 526 (+331.15%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (+786.07%)
Osint ResourcesData collected from publicly available sources to be used in an intelligence context
Stars: ✭ 51 (-58.2%)
InstagramosintAn Instagram Open Source Intelligence Tool
Stars: ✭ 484 (+296.72%)
SwurgParse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).
Stars: ✭ 94 (-22.95%)
Horn3tPowerful Visual Subdomain Enumeration at the Click of a Mouse
Stars: ✭ 120 (-1.64%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (+288.52%)
TwintAn advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
Stars: ✭ 12,102 (+9819.67%)
Flask UnsignCommand line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
Stars: ✭ 90 (-26.23%)
Observer cliVisualize Erlang/Elixir Nodes On The Command Line
Stars: ✭ 1,058 (+767.21%)
Search That Hash🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡
Stars: ✭ 466 (+281.97%)
RecondogReconnaissance Swiss Army Knife
Stars: ✭ 1,069 (+776.23%)
CrackmapexecA swiss army knife for pentesting networks
Stars: ✭ 5,445 (+4363.11%)
DotDarknet OSINT Transform
Stars: ✭ 93 (-23.77%)
ShufflednsshuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
Stars: ✭ 498 (+308.2%)
FleetA flexible control server for osquery fleets
Stars: ✭ 1,068 (+775.41%)
SocialpwnedSocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.
Stars: ✭ 104 (-14.75%)
ReconpiReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.
Stars: ✭ 490 (+301.64%)
Pentest⛔️ offsec batteries included
Stars: ✭ 1,063 (+771.31%)
RpcheckuprpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
Stars: ✭ 91 (-25.41%)
Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (+5039.34%)
OscpMy OSCP journey
Stars: ✭ 50 (-59.02%)
WhatbreachOSINT tool to find breached emails, databases, pastes, and relevant information
Stars: ✭ 472 (+286.89%)
ExploHuman and machine readable web vulnerability testing format
Stars: ✭ 114 (-6.56%)
HoperSecurity tool to trace URL's jumps across the rel links to obtain the last URL
Stars: ✭ 50 (-59.02%)
GobusterDirectory/File, DNS and VHost busting tool written in Go
Stars: ✭ 5,356 (+4290.16%)
Cvebase.comcvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs
Stars: ✭ 88 (-27.87%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+3913.93%)
NetcatNetCat for Windows
Stars: ✭ 463 (+279.51%)
PentestkitUseful tools and scripts during Penetration Testing engagements
Stars: ✭ 463 (+279.51%)
SsrfmapSimple Server Side Request Forgery services enumeration tool.
Stars: ✭ 50 (-59.02%)
AnsvifA Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.
Stars: ✭ 107 (-12.3%)
PlumhoundBloodhound for Blue and Purple Teams
Stars: ✭ 452 (+270.49%)
MilkyA .NET Standard library for pentesting web apps against credential stuffing attacks.
Stars: ✭ 49 (-59.84%)
OctopusOpen source pre-operation C2 server based on python and powershell
Stars: ✭ 449 (+268.03%)
BrokenlinkhijackerA Fast Broken Link Hijacker Tool written in Python
Stars: ✭ 45 (-63.11%)
JusttryharderJustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Stars: ✭ 450 (+268.85%)
Ghunt🕵️♂️ Investigate Google emails and documents.
Stars: ✭ 10,489 (+8497.54%)
HaliveA fast http and https prober, to check which URLs are alive
Stars: ✭ 47 (-61.48%)
PowerzurePowerShell framework to assess Azure security
Stars: ✭ 450 (+268.85%)
YetiYour Everyday Threat Intelligence
Stars: ✭ 1,037 (+750%)
SputnikOpen Source Intelligence Browser Extension
Stars: ✭ 119 (-2.46%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (-6.56%)
Backfuzzprotocol fuzzing toolkit
Stars: ✭ 106 (-13.11%)
KatzkatzPython3 script to parse txt files containing Mimikatz output
Stars: ✭ 91 (-25.41%)
HershellHershell is a simple TCP reverse shell written in Go.
Stars: ✭ 442 (+262.3%)
Onioff🌰 An onion url inspector for inspecting deep web links.
Stars: ✭ 440 (+260.66%)
PrivesccheckPrivilege Escalation Enumeration Script for Windows
Stars: ✭ 1,032 (+745.9%)
ThreatingestorExtract and aggregate threat intelligence.
Stars: ✭ 439 (+259.84%)
Apac ConferencesA community contributed consolidated list of InfoSec meetups in the Asia Pacific region.
Stars: ✭ 90 (-26.23%)
BruteCredential stuffing engine built for security professionals
Stars: ✭ 435 (+256.56%)
Bug Bounty ResponsesA collection of response templates for invalid bug bounty reports.
Stars: ✭ 46 (-62.3%)