reverse-sshStatically-linked ssh server with reverse shell functionality for CTFs and such
Stars: ✭ 548 (+255.84%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (+2174.68%)
ReversePowerShellFunctions that can be used to gain Reverse Shells with PowerShell
Stars: ✭ 48 (-68.83%)
peniotPENIOT: Penetration Testing Tool for IoT
Stars: ✭ 164 (+6.49%)
ggtfobinsGet GTFOBins info about a given exploit from the command line
Stars: ✭ 27 (-82.47%)
webreconAutomated Web Recon Shell Scripts
Stars: ✭ 48 (-68.83%)
NarthexModular personalized dictionary generator.
Stars: ✭ 156 (+1.3%)
DevBrute-A Password Brute ForcerDevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.
Stars: ✭ 91 (-40.91%)
Deep-InsideCommand line tool that allows you to explore IoT devices by using Shodan API.
Stars: ✭ 22 (-85.71%)
MailRipV3SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
Stars: ✭ 28 (-81.82%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1151.95%)
default-http-login-hunterLogin hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.
Stars: ✭ 285 (+85.06%)
AttackSurfaceManagementDiscover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
Stars: ✭ 45 (-70.78%)
AshokAshok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .
Stars: ✭ 109 (-29.22%)
metagoofilSearch Google and download specific file types
Stars: ✭ 174 (+12.99%)
Dark-PhishDark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.
Stars: ✭ 57 (-62.99%)
showdown-battle-botSocket Battle Bot for Pokemon Showdown (http://pokemonshowdown.com/)
Stars: ✭ 19 (-87.66%)
anycable-clientAnyCable / Action Cable JavaScript client for web, Node.js & React Native
Stars: ✭ 40 (-74.03%)
AntiEye:.IP webcam penetration test suit.:
Stars: ✭ 21 (-86.36%)
goLazagneGo library for credentials recovery
Stars: ✭ 177 (+14.94%)
warfWARF is a Web Application Reconnaissance Framework that helps to gather information about the target.
Stars: ✭ 53 (-65.58%)
clairvoyanceObtain GraphQL API Schema even if the introspection is not enabled
Stars: ✭ 448 (+190.91%)
PXXTFFramework For Exploring kernel vulnerabilities, network vulnerabilities ✨
Stars: ✭ 23 (-85.06%)
raspivjTurn the Raspberry Pi into a portable lightweight VJ plateform
Stars: ✭ 27 (-82.47%)
FYIMy last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.
Stars: ✭ 194 (+25.97%)
channeled-dashboardRepository for the talk `Building real time applications with Django and Channels`
Stars: ✭ 20 (-87.01%)
xforwardyHost Header Injection Scanner
Stars: ✭ 32 (-79.22%)
pentesting-notesNotes from OSCP, CTF, security adventures, etc...
Stars: ✭ 38 (-75.32%)
TIWAPTotally Insecure Web Application Project (TIWAP)
Stars: ✭ 137 (-11.04%)
AlfredA friendly Toolkit for Beginner CTF players
Stars: ✭ 39 (-74.68%)
pentest-toolsGeneral stuff for pentesting - password cracking, phishing, automation, Kali, etc.
Stars: ✭ 52 (-66.23%)
peneworkPenetration Test Framwork
Stars: ✭ 24 (-84.42%)
Offensive-Security-CayuqueoScripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited
Stars: ✭ 14 (-90.91%)
WPCrackerWordPress pentest tool
Stars: ✭ 34 (-77.92%)
sshamebrute force SSH public-key authentication
Stars: ✭ 43 (-72.08%)
Red-Rabbit-V4The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow
Stars: ✭ 123 (-20.13%)
c2A simple, extensible C&C beaconing system.
Stars: ✭ 93 (-39.61%)
docsThe official soketi documentation. 📡
Stars: ✭ 55 (-64.29%)
urldedupePass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (+35.06%)
hermes-jsUniversal action dispatcher for JavaScript apps
Stars: ✭ 15 (-90.26%)
spring-boot-chatroomsSpring Boot chatroom with multiple rooms using STOMP over websockets.
Stars: ✭ 33 (-78.57%)
pwn-pulseExploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)
Stars: ✭ 126 (-18.18%)
huntkitDocker - Ubuntu with a bunch of PenTesting tools and wordlists
Stars: ✭ 51 (-66.88%)
btc-ticker-esp8266realtime bitcoin price on 7 segment display with arduino on esp8266
Stars: ✭ 18 (-88.31%)
Atmosph4rXAtmosphere Framework version 4 for Reactive Streams
Stars: ✭ 34 (-77.92%)
graphw00fgraphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.
Stars: ✭ 260 (+68.83%)
shadow-workersShadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
Stars: ✭ 168 (+9.09%)
py-graphql-clientDead-simple GraphQL client with subscriptions over websockets
Stars: ✭ 36 (-76.62%)
boxerBoxer: A fast directory bruteforce tool written in Python with concurrency.
Stars: ✭ 15 (-90.26%)
S3ScanScript to spider a website and find publicly open S3 buckets
Stars: ✭ 21 (-86.36%)
wocketA WebSocket library for Deno
Stars: ✭ 103 (-33.12%)
PwnX.py🏴☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit
Stars: ✭ 30 (-80.52%)
BURN[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)
Stars: ✭ 13 (-91.56%)