BlazyBlazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
Stars: ✭ 637 (-83.25%)
solutions-bwappIn progress rough solutions to bWAPP / bee-box
Stars: ✭ 158 (-95.85%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (-49.32%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (-87.43%)
BlisqyVersion 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
Stars: ✭ 179 (-95.29%)
PidrilaPython Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
Stars: ✭ 125 (-96.71%)
Sqlivmassive SQL injection vulnerability scanner
Stars: ✭ 840 (-77.92%)
ResourcesNo description or website provided.
Stars: ✭ 38 (-99%)
WhatwebNext generation web scanner
Stars: ✭ 3,503 (-7.91%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+90.48%)
aws-wafDeep Security's APIs make it simple to integration with a variety of AWS Services
Stars: ✭ 42 (-98.9%)
sqlinjection-training-appA simple PHP application to learn SQL Injection detection and exploitation techniques.
Stars: ✭ 56 (-98.53%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (-22.66%)
DnstwistDomain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
Stars: ✭ 3,124 (-17.88%)
Dumpall一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
Stars: ✭ 250 (-93.43%)
DamnwebscannerAnother web vulnerabilities scanner, this extension works on Chrome and Opera
Stars: ✭ 254 (-93.32%)
ApiVulners Python API wrapper
Stars: ✭ 313 (-91.77%)
pascal-interpreterA simple interpreter for a large subset of Pascal language written for educational purposes
Stars: ✭ 21 (-99.45%)
OpenVAS-DockerA Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)
Stars: ✭ 16 (-99.58%)
Portspider🕷 A lightning fast multithreaded network scanner framework with modules.
Stars: ✭ 300 (-92.11%)
backscannerA scanner similar to bufio.Scanner, but it reads and returns lines in reverse order, starting at a given position and going backward.
Stars: ✭ 34 (-99.11%)
Whc scan高效强大扫描分析iOS和Android项目里没有使用的类Mac开源工具,清理项目垃圾类,让项目结构干净清爽,升级维护得心应手. Efficient and powerful scanning analysis iOS and Android project no classes used in Mac open source tools, cleaning rubbish class project, make project structure clean and relaxed, upgrade maintenance
Stars: ✭ 342 (-91.01%)
Awesome Threat ModellingA curated list of threat modeling resources (Books, courses - free and paid, videos, tools, tutorials and workshops to practice on ) for learning Threat modeling and initial phases of security review.
Stars: ✭ 319 (-91.61%)
SwiftscanA barcode and qr code scanner( 二维码/条形码扫描、生成,仿微信、支付宝)
Stars: ✭ 293 (-92.3%)
omrmarkengineThis project is designed to allow easy creation of OMR (Optical Mark Recognition) templates and provides a bulk scanner which can be used for processing large amounts of images from a tray fed scanner.
Stars: ✭ 49 (-98.71%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (-92.98%)
Netcat💻 Netcat client and server modules written in pure Javascript for Node.js.
Stars: ✭ 315 (-91.72%)
I18next ScannerScan your code, extract translation keys/values, and merge them into i18n resource files.
Stars: ✭ 259 (-93.19%)
Droid Hunter(deprecated) Android application vulnerability analysis and Android pentest tool
Stars: ✭ 256 (-93.27%)
RaptorWeb-based Source Code Vulnerability Scanner
Stars: ✭ 314 (-91.75%)
CheckiptoolsCheckIPTools 扫描谷歌IP以及实用IP转换小工具
Stars: ✭ 253 (-93.35%)
Docker Onion NmapScan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.
Stars: ✭ 345 (-90.93%)
template-injection-workshopWorkshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
Stars: ✭ 99 (-97.4%)
Gray hat csharp codeThis repository contains full code examples from the book Gray Hat C#
Stars: ✭ 301 (-92.09%)
YobiYara Based Detection Engine for web browsers
Stars: ✭ 39 (-98.97%)
Iblessingiblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.
Stars: ✭ 326 (-91.43%)
JWTweakDetects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.
Stars: ✭ 85 (-97.77%)
RmiscoutRMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
Stars: ✭ 296 (-92.22%)
mondoo🕵️♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management
Stars: ✭ 60 (-98.42%)
HijackthisA free utility that finds malware, adware and other security threats
Stars: ✭ 349 (-90.83%)
SQLbitJust another script for automatize boolean-based blind SQL injections. (Demo)
Stars: ✭ 30 (-99.21%)
CheatsheetseriesThe OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Stars: ✭ 19,302 (+407.41%)
Log4j-RCE-ScannerRemote command execution vulnerability scanner for Log4j.
Stars: ✭ 200 (-94.74%)
VajraVajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.
Stars: ✭ 269 (-92.93%)
TIGERimplement a full compiler based on c++ 11
Stars: ✭ 17 (-99.55%)
NSE-scriptsNSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473
Stars: ✭ 105 (-97.24%)
garden.zbarcamMigrated to https://github.com/kivy-garden/zbarcam
Stars: ✭ 49 (-98.71%)
LegionAutomatic Enumeration Tool based in Open Source tools
Stars: ✭ 280 (-92.64%)
cf-checkCloudFlare Checker written in Go
Stars: ✭ 147 (-96.14%)
Sqli HunterSQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.
Stars: ✭ 340 (-91.06%)
PulsarNetwork footprint scanner platform. Discover domains and run your custom checks periodically.
Stars: ✭ 314 (-91.75%)
Xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Stars: ✭ 3,131 (-17.69%)
log4shelldetectRapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files
Stars: ✭ 40 (-98.95%)
Recon PipelineAn automated target reconnaissance pipeline.
Stars: ✭ 278 (-92.69%)