WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (-62.3%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (-6.12%)
Linux Secureboot KitTool for complete hardening of Linux boot chain with UEFI Secure Boot
Stars: ✭ 54 (-94.1%)
OneforallOneForAll是一款功能强大的子域收集工具
Stars: ✭ 4,202 (+359.23%)
SuperSecure, Unified, Powerful and Extensible Rust Android Analyzer
Stars: ✭ 340 (-62.84%)
TaipanWeb application vulnerability scanner
Stars: ✭ 359 (-60.77%)
UrsadbTrigram database written in C++, suited for malware indexing
Stars: ✭ 72 (-92.13%)
VulsAgent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Stars: ✭ 8,844 (+866.56%)
Envkey AppSecure, human-friendly, cross-platform secrets and config.
Stars: ✭ 83 (-90.93%)
ContentSecurity automation content in SCAP, OSCAL, Bash, Ansible, and other formats
Stars: ✭ 1,219 (+33.22%)
MonkeyInfection Monkey - An automated pentest tool
Stars: ✭ 5,572 (+508.96%)
Offensive DockerOffensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.
Stars: ✭ 328 (-64.15%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-87.65%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-88.09%)
NosqliNoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
Stars: ✭ 120 (-86.89%)
ArchivefuzzHunt down the secrets from the WebArchives for Fun and Profit
Stars: ✭ 108 (-88.2%)
Awesome Mobile SecurityAn effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
Stars: ✭ 1,837 (+100.77%)
NebulousadNebulousAD automated credential auditing tool.
Stars: ✭ 158 (-82.73%)
PatrowldocsPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 105 (-88.52%)
CrithitTakes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Stars: ✭ 182 (-80.11%)
Tools TbhmTools of "The Bug Hunters Methodology V2 by @jhaddix"
Stars: ✭ 171 (-81.31%)
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (-82.3%)
Fwanalyzera tool to analyze filesystem images for security
Stars: ✭ 382 (-58.25%)
H1domainsHackerOne "in scope" domains
Stars: ✭ 223 (-75.63%)
AwsbucketdumpSecurity Tool to Look For Interesting Files in S3 Buckets
Stars: ✭ 1,021 (+11.58%)
SecurecodeboxsecureCodeBox (SCB) - continuous secure delivery out of the box
Stars: ✭ 279 (-69.51%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (-43.5%)
W5Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Stars: ✭ 367 (-59.89%)
HuskyciPerforming security tests inside your CI
Stars: ✭ 398 (-56.5%)
fleexFleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.
Stars: ✭ 181 (-80.22%)
s3cr3tA supercharged S3 reverse proxy
Stars: ✭ 55 (-93.99%)
Sub-DrillA very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-92.35%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+71.8%)
recceDomain availbility checker
Stars: ✭ 30 (-96.72%)
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (-86.99%)
frida setupOne-click installer for Frida and Burp certs for SSL Pinning bypass
Stars: ✭ 47 (-94.86%)
PassivehunterSubdomain discovery using the power of 'The Rapid7 Project Sonar datasets'
Stars: ✭ 83 (-90.93%)
SoteriaPlugin to block compilation when unapproved dependencies are used or code styling does not comply.
Stars: ✭ 36 (-96.07%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (-77.6%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (-67.87%)
HosthunterHostHunter a recon tool for discovering hostnames using OSINT techniques.
Stars: ✭ 427 (-53.33%)
WsltoolsWeb Scan Lazy Tools - Python Package
Stars: ✭ 288 (-68.52%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+270.6%)
credcheckCredentials Checking Framework
Stars: ✭ 50 (-94.54%)
Recon My WayThis repository created for personal use and added tools from my latest blog post.
Stars: ✭ 271 (-70.38%)
PatrowlmanagerPatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform
Stars: ✭ 363 (-60.33%)
BurpaBurp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).
Stars: ✭ 427 (-53.33%)
GosecGolang security checker
Stars: ✭ 5,694 (+522.3%)
HabuHacking Toolkit
Stars: ✭ 635 (-30.6%)
Grauditgrep rough audit - source code auditing tool
Stars: ✭ 747 (-18.36%)
SprayingtoolkitScripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
Stars: ✭ 802 (-12.35%)
Security ListPenetrum LLC opensource security tool list.
Stars: ✭ 619 (-32.35%)
Embaemba - An analyzer for Linux-based firmware of embedded devices.
Stars: ✭ 607 (-33.66%)
BluespawnAn Active Defense and EDR software to empower Blue Teams
Stars: ✭ 737 (-19.45%)