h1-searchTool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Stars: ✭ 58 (-78.11%)
hack-scriptsscripts to setup pentesting system and use during pentest
Stars: ✭ 16 (-93.96%)
juumla🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.
Stars: ✭ 107 (-59.62%)
ADMMutateClassic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…
Stars: ✭ 69 (-73.96%)
sx🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (+378.11%)
NarthexModular personalized dictionary generator.
Stars: ✭ 156 (-41.13%)
auto-recon-ngAutomated script to run all modules for a specified list of domains, netblocks or company name
Stars: ✭ 17 (-93.58%)
credcheckCredentials Checking Framework
Stars: ✭ 50 (-81.13%)
ligolo-ngAn advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
Stars: ✭ 418 (+57.74%)
transportc2PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.
Stars: ✭ 22 (-91.7%)
pyhtoolsA Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.
Stars: ✭ 166 (-37.36%)
FsocietyA Modular Penetration Testing Framework
Stars: ✭ 259 (-2.26%)
mec-ngpentest toolbox
Stars: ✭ 28 (-89.43%)
bug-bountyMy personal bug bounty toolkit.
Stars: ✭ 127 (-52.08%)
report-ngGenerate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.
Stars: ✭ 62 (-76.6%)
ShonyDanzaA customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
Stars: ✭ 86 (-67.55%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-91.32%)
crtfinderFast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques
Stars: ✭ 96 (-63.77%)
PassivehunterSubdomain discovery using the power of 'The Rapid7 Project Sonar datasets'
Stars: ✭ 83 (-68.68%)
mobilehacktoolsA repository for scripting a mobile attack toolchain
Stars: ✭ 61 (-76.98%)
yandi-scannerNetwork Security Vulnerability Scanner
Stars: ✭ 110 (-58.49%)
VNCPwnVNC pentest tool with bruteforce and ducky script execution features
Stars: ✭ 21 (-92.08%)
HolyTipsA Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.
Stars: ✭ 1,210 (+356.6%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-89.06%)
xmlrpc-bruteforcerAn XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)
Stars: ✭ 62 (-76.6%)
xecaPowerShell payload generator
Stars: ✭ 103 (-61.13%)
keyscopeKeyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
Stars: ✭ 369 (+39.25%)
Thc Ipv6IPv6 attack toolkit
Stars: ✭ 673 (+153.96%)
Pwdlyser-CLIPython-based CLI Password Analyser (Reporting Tool)
Stars: ✭ 29 (-89.06%)
DevBrute-A Password Brute ForcerDevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.
Stars: ✭ 91 (-65.66%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-85.66%)
Digispark ScriptsUSB Rubber Ducky type scripts written for the DigiSpark.
Stars: ✭ 629 (+137.36%)
oscpMy notebook for OSCP Lab
Stars: ✭ 22 (-91.7%)
DotdotpwnDotDotPwn - The Directory Traversal Fuzzer
Stars: ✭ 601 (+126.79%)
hathiA dictionary attack tool for PostgreSQL and MSSQL
Stars: ✭ 33 (-87.55%)
ARL-NPoC集漏洞验证和任务运行的一个框架
Stars: ✭ 73 (-72.45%)
PayloadsPayload Arsenal for Pentration Tester and Bug Bounty Hunters
Stars: ✭ 421 (+58.87%)
STEWSA Security Tool for Enumerating WebSockets
Stars: ✭ 154 (-41.89%)
lavaMicrosoft Azure Exploitation Framework
Stars: ✭ 46 (-82.64%)
Damn Vulnerable Graphql ApplicationDamn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Stars: ✭ 567 (+113.96%)
NTPDoserNTP Doser is a NTP Amplification DoS/DDoS attack tool for penttesting
Stars: ✭ 96 (-63.77%)
brutekragPenetration tests on SSH servers using brute force or dictionary attacks. Written in Python.
Stars: ✭ 30 (-88.68%)
AutoPentest-DRLAutoPentest-DRL: Automated Penetration Testing Using Deep Reinforcement Learning
Stars: ✭ 196 (-26.04%)
awesome-api-securityA collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Stars: ✭ 2,079 (+684.53%)
Offensive-Security-CayuqueoScripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited
Stars: ✭ 14 (-94.72%)
SSI Extra MaterialsIn my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them
Stars: ✭ 42 (-84.15%)
urlbruteDirectory/Subdomain scanner developed in GoLang.
Stars: ✭ 37 (-86.04%)
Intel-OneCommand line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…
Stars: ✭ 23 (-91.32%)
PLtools整理一些内网常用渗透小工具
Stars: ✭ 227 (-14.34%)