HackingtoolALL IN ONE Hacking Tool For Hackers
Stars: ✭ 7,521 (+187.39%)
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (-69.77%)
Application Security Engineer Interview QuestionsSome of the questions which i was asked when i was giving interviews for Application/Product Security roles. I am sure this is not an exhaustive list but i felt these questions were important to be asked and some were challenging to answer
Stars: ✭ 267 (-89.8%)
AllaboutbugbountyAll about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (-71.04%)
Medusa🐈Medusa是一个红队武器库平台,目前包括扫描功能(200+个漏洞)、XSS平台、协同平台、CVE监控等功能,持续开发中 http://medusa.ascotbe.com
Stars: ✭ 796 (-69.58%)
ImgbackdoorHide your payload into .jpg file
Stars: ✭ 87 (-96.68%)
Openapi Sampler🔠 Tool for generation samples based on OpenAPI(fka Swagger) payload/response schema
Stars: ✭ 83 (-96.83%)
ReconnessReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.
Stars: ✭ 131 (-94.99%)
Python Xss FilterBased on native Python module HTMLParser purifier of HTML, To Clear all javascript in html
Stars: ✭ 115 (-95.61%)
UefiFast and lightweight yet another UEFI implementation
Stars: ✭ 79 (-96.98%)
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (-53.95%)
WinpayloadsUndetectable Windows Payload Generation
Stars: ✭ 1,211 (-53.73%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (-54.38%)
BbrAn open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
Stars: ✭ 142 (-94.57%)
ArcanusARCANUS is a customized payload generator/handler.
Stars: ✭ 130 (-95.03%)
Dns DiscoveryDNS-Discovery is a multithreaded subdomain bruteforcer.
Stars: ✭ 114 (-95.64%)
GivingstormInfection vector that bypasses AV, IDS, and IPS. (For now...)
Stars: ✭ 72 (-97.25%)
Chaos🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.
Stars: ✭ 1,168 (-55.37%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (-95.64%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (-55.52%)
SqlinatorAutomatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS
Stars: ✭ 70 (-97.33%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-95.03%)
BulwarkAn organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.
Stars: ✭ 113 (-95.68%)
FindsploitFind exploits in local and online databases instantly
Stars: ✭ 1,160 (-55.67%)
QuarantyneModern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails
Stars: ✭ 113 (-95.68%)
CtfcracktoolsChina's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关
Stars: ✭ 1,118 (-57.28%)
ResourcesA Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.
Stars: ✭ 62 (-97.63%)
StitchPython Remote Administration Tool (RAT)
Stars: ✭ 2,018 (-22.89%)
ProtonProton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.
Stars: ✭ 142 (-94.57%)
HookishHooks in to interesting functions and helps reverse the web app faster.
Stars: ✭ 129 (-95.07%)
S3reverseThe format of various s3 buckets is convert in one format. for bugbounty and security testing.
Stars: ✭ 61 (-97.67%)
ZileExtract API keys from file or url using by magic of python and regex.
Stars: ✭ 61 (-97.67%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-95.83%)
Rfd CheckerRFD Checker - security CLI tool to test Reflected File Download issues
Stars: ✭ 56 (-97.86%)
Differerdifferer finds how URLs are parsed by different languages in order to help bug hunters break filters
Stars: ✭ 56 (-97.86%)
Awesome Mobile SecurityAn effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.
Stars: ✭ 1,837 (-29.81%)
DuckysparkTranslator from USB-Rubber-Ducky payloads to a Digispark code.
Stars: ✭ 107 (-95.91%)
EvilgradeEvilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.
Stars: ✭ 1,086 (-58.5%)
JaelesThe Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (-59%)
Parsevip解析VIP资源,解析出酷狗、QQ音乐、腾讯视频、人人视频的真实地址
Stars: ✭ 105 (-95.99%)
Ostrio▲ Web services for JavaScript, Angular.js, React.js, Vue.js, Meteor.js, Node.js, and other JavaScript-based websites, web apps, single page applications (SPA), and progressive web applications (PWA). Our services: Pre-rendering, Monitoring, Web Analytics, WebSec, and Web-CRON
Stars: ✭ 52 (-98.01%)
Tar Splitchecksum-reproducible tar archives (utility/library)
Stars: ✭ 52 (-98.01%)
EntropyEntropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.
Stars: ✭ 126 (-95.19%)
Go Deliver Go-deliver is a payload delivery tool coded in Go.
Stars: ✭ 103 (-96.06%)
Pythempentest framework
Stars: ✭ 1,060 (-59.5%)
VailynA phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Stars: ✭ 103 (-96.06%)
Pentesting BibleLearn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+243.18%)
XwafxWAF 3.0 - Free Web Application Firewall, Open-Source.
Stars: ✭ 48 (-98.17%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-95.19%)
XsscopeXSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Stars: ✭ 103 (-96.06%)
HaliveA fast http and https prober, to check which URLs are alive
Stars: ✭ 47 (-98.2%)
UddupUrls de-duplication tool for better recon.
Stars: ✭ 103 (-96.06%)