GobyAttack surface mapping
Stars: ✭ 446 (-36.92%)
MonkeyInfection Monkey - An automated pentest tool
Stars: ✭ 5,572 (+688.12%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (-49.79%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+592.64%)
EngineDroidefense: Advance Android Malware Analysis Framework
Stars: ✭ 386 (-45.4%)
Jok3rJok3r v3 BETA 2 - Network and Web Pentest Automation Framework
Stars: ✭ 645 (-8.77%)
Syzkallersyzkaller is an unsupervised coverage-guided kernel fuzzer
Stars: ✭ 3,841 (+443.28%)
Ssh Mitmssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation
Stars: ✭ 335 (-52.62%)
PhanPhan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Stars: ✭ 5,194 (+634.65%)
SalusSecurity scanner coordinator
Stars: ✭ 441 (-37.62%)
SemgrepLightweight static analysis for many languages. Find bug variants with patterns that look like source code.
Stars: ✭ 5,668 (+701.7%)
BxssbXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Stars: ✭ 331 (-53.18%)
SpoofcheckSimple script that checks a domain for email protections
Stars: ✭ 437 (-38.19%)
PmdAn extensible multilanguage static code analyzer.
Stars: ✭ 3,667 (+418.67%)
Kube Scankube-scan: Octarine k8s cluster risk assessment tool
Stars: ✭ 566 (-19.94%)
ReconnoteWeb Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters
Stars: ✭ 322 (-54.46%)
Cookie crimesRead local Chrome cookies without root or decrypting
Stars: ✭ 434 (-38.61%)
Bruteforce ListsSome files for bruteforcing certain things.
Stars: ✭ 320 (-54.74%)
Npq🎖safely* install packages with npm or yarn by auditing them as part of your install process
Stars: ✭ 513 (-27.44%)
Envizonnetwork visualization & vulnerability management/reporting
Stars: ✭ 382 (-45.97%)
Hackertarget🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯
Stars: ✭ 320 (-54.74%)
Rubocop RailsA RuboCop extension focused on enforcing Rails best practices and coding conventions.
Stars: ✭ 433 (-38.76%)
IosMost usable tools for iOS penetration testing
Stars: ✭ 563 (-20.37%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (-56.15%)
Standard🌟 JavaScript Style Guide, with linter & automatic code fixer
Stars: ✭ 26,433 (+3638.76%)
HettyHetty is an HTTP toolkit for security research.
Stars: ✭ 3,596 (+408.63%)
EvilscanNodeJS Simple Network Scanner
Stars: ✭ 428 (-39.46%)
PolichombrCollaborative malware analysis framework
Stars: ✭ 307 (-56.58%)
Jsprimea javascript static security analysis tool
Stars: ✭ 556 (-21.36%)
Reviewdog🐶 Automated code review tool integrated with any code analysis tools regardless of programming language
Stars: ✭ 4,541 (+542.29%)
Awesome StandardDocumenting the explosion of packages in the standard ecosystem!
Stars: ✭ 300 (-57.57%)
SouffleSoufflé is a variant of Datalog for tool designers crafting analyses in Horn clauses. Soufflé synthesizes a native parallel C++ program from a logic specification.
Stars: ✭ 426 (-39.75%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (-57.99%)
Security Code ScanVulnerability Patterns Detector for C# and VB.NET
Stars: ✭ 550 (-22.21%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (-45.97%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-26.87%)
Fwanalyzera tool to analyze filesystem images for security
Stars: ✭ 382 (-45.97%)
HeraldingCredentials catching honeypot
Stars: ✭ 297 (-57.99%)
Sentinel AttackTools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
Stars: ✭ 676 (-4.38%)
RmiscoutRMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Stars: ✭ 296 (-58.13%)
Preallocprealloc is a Go static analysis tool to find slice declarations that could potentially be preallocated.
Stars: ✭ 419 (-40.74%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (-59.26%)
Pep8speaksA GitHub app to automatically review Python code style over Pull Requests
Stars: ✭ 546 (-22.77%)
GadgetprobeProbe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Stars: ✭ 381 (-46.11%)
Red BaronAutomate creating resilient, disposable, secure and agile infrastructure for Red Teams.
Stars: ✭ 662 (-6.36%)
Git HoundReconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
Stars: ✭ 602 (-14.85%)
EslintFind and fix problems in your JavaScript code.
Stars: ✭ 19,665 (+2681.47%)
PyupA tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.
Stars: ✭ 379 (-46.39%)