Juice ShopOWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Stars: ✭ 6,270 (+2230.86%)
Hackinghacker, ready for more of our story ! 🚀
Stars: ✭ 413 (+53.53%)
Aliens eyeSocial media hunter
Stars: ✭ 105 (-60.97%)
sub404A python tool to check subdomain takeover vulnerability
Stars: ✭ 205 (-23.79%)
NsablocklistHOSTS file and research project to block all known NSA / GCHQ / C.I.A. / F.B.I. spying server
Stars: ✭ 630 (+134.2%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+116.73%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-85.87%)
Cc.pyExtracting URLs of a specific target based on the results of "commoncrawl.org"
Stars: ✭ 250 (-7.06%)
Investigo🔎 Find usernames and download their data across social media.
Stars: ✭ 168 (-37.55%)
Recon-XAdvanced Reconnaissance tool to enumerate attacking surface of the target.
Stars: ✭ 27 (-89.96%)
BrokenlinkhijackerA Fast Broken Link Hijacker Tool written in Python
Stars: ✭ 45 (-83.27%)
PrivescA collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
Stars: ✭ 786 (+192.19%)
SimplyemailEmail recon made fast and easy, with a framework to build on
Stars: ✭ 779 (+189.59%)
sherlock🔎 Find usernames across social networks
Stars: ✭ 52 (-80.67%)
DracnmapDracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.
Stars: ✭ 861 (+220.07%)
credcheckCredentials Checking Framework
Stars: ✭ 50 (-81.41%)
sx🖖 Fast, modern, easy-to-use network scanner
Stars: ✭ 1,267 (+371%)
osintDocker image for osint
Stars: ✭ 92 (-65.8%)
findcdnfindCDN is a tool created to help accurately identify what CDN a domain is using.
Stars: ✭ 64 (-76.21%)
pywhatcmsUnofficial WhatCMS API package
Stars: ✭ 42 (-84.39%)
Pythempentest framework
Stars: ✭ 1,060 (+294.05%)
Vulnxvulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}
Stars: ✭ 1,009 (+275.09%)
KeyloggerA simple keylogger for Windows, Linux and Mac
Stars: ✭ 1,007 (+274.35%)
XshockXSHOCK Shellshock Exploit
Stars: ✭ 65 (-75.84%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (+185.13%)
Zynix Fusionzynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.
Stars: ✭ 84 (-68.77%)
Gitjacker🔪 Leak git repositories from misconfigured websites
Stars: ✭ 1,249 (+364.31%)
Pentesting toolkit🏴☠️ Tools for pentesting, CTFs & wargames. 🏴☠️
Stars: ✭ 1,268 (+371.38%)
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (+347.96%)
toutatisToutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
Stars: ✭ 803 (+198.51%)
Ecommerce Website Security ChecklistList of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.
Stars: ✭ 98 (-63.57%)
GithacktoolsThe best Hacking and PenTesting tools installer on the world
Stars: ✭ 78 (-71%)
Burp Send ToAdds a customizable "Send to..."-context-menu to your BurpSuite.
Stars: ✭ 114 (-57.62%)
Linux Smart EnumerationLinux enumeration tool for pentesting and CTFs with verbosity levels
Stars: ✭ 1,956 (+627.14%)
Hack4Squad💀 A bash hacking and scanning framework.
Stars: ✭ 45 (-83.27%)
o365chkSimple Python tool to check if there is an Office 365 instance linked to a domain.
Stars: ✭ 37 (-86.25%)
ObsidianSailboatNmap and NSE command line wrapper in the style of Metasploit
Stars: ✭ 36 (-86.62%)
IRIS🔍 IRIS: An open-source intelligence framework
Stars: ✭ 79 (-70.63%)
TIGMINTTIGMINT: OSINT (Open Source Intelligence) GUI software framework
Stars: ✭ 195 (-27.51%)
PyParser-CVEMulti source CVE/exploit parser.
Stars: ✭ 25 (-90.71%)
NetwormPython network worm that spreads on the local network and gives the attacker control of these machines.
Stars: ✭ 135 (-49.81%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+578.07%)
QuiverQuiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-47.96%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+616.73%)
Zeebsploitweb scanner - exploitation - information gathering
Stars: ✭ 159 (-40.89%)
Di.we.hRepositório com conteúdo sobre web hacking em português
Stars: ✭ 156 (-42.01%)
GotandaGotanda is browser Web Extension for OSINT.
Stars: ✭ 149 (-44.61%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+404.46%)
GitmailsAn information gathering tool to collect git commit emails in version control host services
Stars: ✭ 142 (-47.21%)
XposedOrNotXposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.
Stars: ✭ 120 (-55.39%)
Geo ReconAn OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.
Stars: ✭ 82 (-69.52%)
LeakscraperLeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
Stars: ✭ 227 (-15.61%)
gosintGosint is a distributed asset information collection and vulnerability scanning platform
Stars: ✭ 344 (+27.88%)
dorkscoutDorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets
Stars: ✭ 189 (-29.74%)