Zap CliA simple tool for interacting with OWASP ZAP from the commandline.
Stars: ✭ 166 (-97.06%)
wifi-sploitWi-Fi sploit is a password cracker for an admin page of a Wi-Fi Router.
Stars: ✭ 29 (-99.49%)
PasscatPasswords Recovery Tool
Stars: ✭ 164 (-97.09%)
NightingaleIt's a Docker Environment for pentesting which having all the required tool for VAPT.
Stars: ✭ 119 (-97.89%)
d00rSimple directory brute-force tool written with python.
Stars: ✭ 35 (-99.38%)
PlutusAn automated bitcoin wallet collider that brute forces random wallet addresses
Stars: ✭ 404 (-92.84%)
KillchainA unified console to perform the "kill chain" stages of attacks.
Stars: ✭ 172 (-96.95%)
Git ScannerA tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Stars: ✭ 157 (-97.22%)
JwtcatA CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.
Stars: ✭ 181 (-96.79%)
Intrec PackIntelligence and Reconnaissance Package/Bundle installer.
Stars: ✭ 177 (-96.86%)
Mida MultitoolBash script purposed for system enumeration, vulnerability identification and privilege escalation.
Stars: ✭ 144 (-97.45%)
PUPI🛅 Passwords using personal information
Stars: ✭ 65 (-98.85%)
Infosec referenceAn Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
Stars: ✭ 4,162 (-26.27%)
BifrostBifrost C2. Open-source post-exploitation using Discord API
Stars: ✭ 37 (-99.34%)
GoohakAutomatically Launch Google Hacking Queries Against A Target Domain
Stars: ✭ 432 (-92.35%)
FdsploitFile Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
Stars: ✭ 199 (-96.47%)
HrshellHRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
Stars: ✭ 193 (-96.58%)
Evil SsdpSpoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
Stars: ✭ 204 (-96.39%)
Stegseek⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️
Stars: ✭ 187 (-96.69%)
AiodnsbrutePython 3.5+ DNS asynchronous brute force utility
Stars: ✭ 370 (-93.45%)
Oscp Cheat SheetThis is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder
Stars: ✭ 216 (-96.17%)
awesome-pentest-toolsList of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
Stars: ✭ 34 (-99.4%)
RdpasssprayPython3 tool to perform password spraying using RDP
Stars: ✭ 368 (-93.48%)
Jwt CrackerSimple HS256 JWT token brute force cracker
Stars: ✭ 365 (-93.53%)
K8toolsK8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Stars: ✭ 4,173 (-26.08%)
BtcbfBitcoin private key brute force tool, written in python. Also can be used as a bitcoin wallet generator.
Stars: ✭ 91 (-98.39%)
limitrr-phpBetter PHP rate limiting using Redis.
Stars: ✭ 19 (-99.66%)
NarthexModular personalized dictionary generator.
Stars: ✭ 156 (-97.24%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (-91.14%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (-97.34%)
minipwnerA script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".
Stars: ✭ 53 (-99.06%)
WebkillerTool Information Gathering Write By Python.
Stars: ✭ 300 (-94.69%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-99.49%)
CcatCloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
Stars: ✭ 300 (-94.69%)
AzureAD Autologon BruteBrute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/
Stars: ✭ 90 (-98.41%)
winallenumThis powershell script has got to run in remote hacked windows host, even for pivoting
Stars: ✭ 13 (-99.77%)
GetPwdIt's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)
Stars: ✭ 46 (-99.19%)
huntkitDocker - Ubuntu with a bunch of PenTesting tools and wordlists
Stars: ✭ 51 (-99.1%)
boxerBoxer: A fast directory bruteforce tool written in Python with concurrency.
Stars: ✭ 15 (-99.73%)
BFSGBFSG - BruteForce String Generator 😾
Stars: ✭ 16 (-99.72%)
RPCScanTool to communicate with RPC services and check misconfigurations on NFS shares
Stars: ✭ 53 (-99.06%)
haiti🔑 Hash type identifier (CLI & lib)
Stars: ✭ 287 (-94.92%)
WebspoiltThis script will you help to find the information about the website and to help in penetrating testing
Stars: ✭ 34 (-99.4%)
vulnerabilitiesList of every possible vulnerabilities in computer security.
Stars: ✭ 14 (-99.75%)
instabruteInstagram Brute Forcer
Stars: ✭ 135 (-97.61%)
maalikFeature-rich Post Exploitation Framework with Network Pivoting capabilities.
Stars: ✭ 75 (-98.67%)
HashExploitHashExpoit is Great Tool For Cracking Hash
Stars: ✭ 17 (-99.7%)
aquatoneA Tool for Domain Flyovers
Stars: ✭ 43 (-99.24%)
crawleetWeb Recon & Exploitation Tool.
Stars: ✭ 48 (-99.15%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (-93.71%)
ElliotA pentesting tool inspired by mr robot and derived by zphisher
Stars: ✭ 23 (-99.59%)
EhtoolsWi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.
Stars: ✭ 422 (-92.52%)
Shodan-RPiA simple SSH bruteforce script targeting (not necessarily) Raspbian devices.
Stars: ✭ 13 (-99.77%)