sqlscanQuick SQL Scanner, Dorker, Webshell injector PHP
Stars: ✭ 140 (+47.37%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+209.47%)
rustcatRustcat(rcat) - The modern Port listener and Reverse shell
Stars: ✭ 505 (+431.58%)
h1-searchTool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.
Stars: ✭ 58 (-38.95%)
credcheckCredentials Checking Framework
Stars: ✭ 50 (-47.37%)
phisherpriceAll In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.
Stars: ✭ 38 (-60%)
PLtools整理一些内网常用渗透小工具
Stars: ✭ 227 (+138.95%)
LscriptThe LAZY script will make your life easier, and of course faster.
Stars: ✭ 3,056 (+3116.84%)
Txtoolan easy pentesting tool.
Stars: ✭ 246 (+158.95%)
SamuraiwtfThe main SamuraiWTF collaborative distro repo.
Stars: ✭ 243 (+155.79%)
KbA minimalist command line knowledge base manager
Stars: ✭ 2,789 (+2835.79%)
Anevicon🔥 A high-performant UDP load generator, written in Rust
Stars: ✭ 243 (+155.79%)
F8x红/蓝队环境自动化部署工具
Stars: ✭ 227 (+138.95%)
CrosslinkedLinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping
Stars: ✭ 223 (+134.74%)
Darkspiritz🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍
Stars: ✭ 219 (+130.53%)
TigersharkBilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.
Stars: ✭ 212 (+123.16%)
Socialfishmobile📱 🐟 An app to remote control SocialFish.
Stars: ✭ 200 (+110.53%)
Hack ToolsThe all-in-one Red Team extension for Web Pentester 🛠
Stars: ✭ 2,750 (+2794.74%)
FoolavPentest tool for antivirus evasion and running arbitrary payload on target Wintel host
Stars: ✭ 181 (+90.53%)
KillchainA unified console to perform the "kill chain" stages of attacks.
Stars: ✭ 172 (+81.05%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+2333.68%)
PymetaPymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.
Stars: ✭ 170 (+78.95%)
ZigdiggityA ZigBee hacking toolkit by Bishop Fox
Stars: ✭ 169 (+77.89%)
Attiny85RubberDucky like payloads for DigiSpark Attiny85
Stars: ✭ 169 (+77.89%)
Finshir💫 An asynchronous Low & Slow traffic generator, written in Rust
Stars: ✭ 168 (+76.84%)
EnumdbRelational database brute force and post exploitation tool for MySQL and MSSQL
Stars: ✭ 167 (+75.79%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+1972.63%)
DarksideTool Information Gathering & social engineering Write By [Python,JS,PHP]
Stars: ✭ 159 (+67.37%)
Git ScannerA tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
Stars: ✭ 157 (+65.26%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (+57.89%)
DirmapAn advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
Stars: ✭ 2,127 (+2138.95%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (+55.79%)
Burpsuite XkeysA Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.
Stars: ✭ 144 (+51.58%)
GitmailsAn information gathering tool to collect git commit emails in version control host services
Stars: ✭ 142 (+49.47%)
RelayerSMB Relay Attack Script
Stars: ✭ 136 (+43.16%)
Sec ToolsDocker images for infosec tools
Stars: ✭ 135 (+42.11%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (+38.95%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (+36.84%)
PakuriPenetration test Achieve Knowledge Unite Rapid Interface
Stars: ✭ 125 (+31.58%)
Struts2 check一个用于识别目标网站是否采用Struts2框架开发的工具demo
Stars: ✭ 124 (+30.53%)
Msploitego Pentesting suite for Maltego based on data in a Metasploit database
Stars: ✭ 124 (+30.53%)
Ssrf TestingSSRF (Server Side Request Forgery) testing resources
Stars: ✭ 1,718 (+1708.42%)
RatelRAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.
Stars: ✭ 121 (+27.37%)
SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (+22.11%)
EspkeyWiegand data logger, replay device and micro door-controller
Stars: ✭ 114 (+20%)
Mitm Scripts🔄 A collection of mitmproxy inline scripts
Stars: ✭ 109 (+14.74%)
CatnipCat-Nip Automated Basic Pentest Tool - Designed For Kali Linux
Stars: ✭ 108 (+13.68%)
Punk.pyunix SSH post-exploitation 1337 tool
Stars: ✭ 107 (+12.63%)
Dnsubdnsub一款好用的子域名扫描工具
Stars: ✭ 106 (+11.58%)
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (+8.42%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+1328.42%)