GsilGitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
Stars: ✭ 1,764 (+1503.64%)
Ladon大型内网渗透扫描器&Cobalt Strike,Ladon8.9内置120个模块,包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2,密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
Stars: ✭ 2,911 (+2546.36%)
EsdEnumeration sub domains(枚举子域名)
Stars: ✭ 785 (+613.64%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+1558.18%)
Red hawkAll in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
Stars: ✭ 1,898 (+1625.45%)
BlazyBlazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
Stars: ✭ 637 (+479.09%)
one-scan多合一网站指纹扫描器,轻松获取网站的 IP / DNS 服务商 / 子域名 / HTTPS 证书 / WHOIS / 开发框架 / WAF 等信息
Stars: ✭ 44 (-60%)
EvilscanNodeJS Simple Network Scanner
Stars: ✭ 428 (+289.09%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+604.55%)
urlbruteDirectory/Subdomain scanner developed in GoLang.
Stars: ✭ 37 (-66.36%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+1329.09%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+2001.82%)
K8toolsK8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
Stars: ✭ 4,173 (+3693.64%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+6487.27%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+715.45%)
Pythempentest framework
Stars: ✭ 1,060 (+863.64%)
DnsbruteDNS Sub-domain brute forcer, in Python + gevent
Stars: ✭ 40 (-63.64%)
LadongoLadon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架,使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost,远程执行SSH/Winrm,密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis,端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机,端口扫描服务识别PortScan。
Stars: ✭ 366 (+232.73%)
Recon RavenReconnaissance tool of Penetration test & Bug Bounty
Stars: ✭ 18 (-83.64%)
GoreconGorecon is a All in one Reconnaissance Tool , a.k.a swiss knife for Reconnaissance , A tool that every pentester/bughunter might wanna consider into their arsenal
Stars: ✭ 208 (+89.09%)
WpscanWPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
Stars: ✭ 6,244 (+5576.36%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+680.91%)
AggressorLadon for Cobalt Strike, Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp
Stars: ✭ 228 (+107.27%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+29.09%)
MGObfuscatorAn easy encryptor / decryptor for iOS
Stars: ✭ 17 (-84.55%)
BrutegramInstagram multi-bruteforce Platfrom
Stars: ✭ 183 (+66.36%)
assbreaka tool for brute-force website & mail address.
Stars: ✭ 38 (-65.45%)
PassivehunterSubdomain discovery using the power of 'The Rapid7 Project Sonar datasets'
Stars: ✭ 83 (-24.55%)
MassVulScanBash script which quickly identifies open network ports and any associated vulnerabilities / Script Bash qui permet d'identifier rapidement les ports réseaux ouverts et les éventuelles vulnérabilités associées.
Stars: ✭ 56 (-49.09%)
sshamebrute force SSH public-key authentication
Stars: ✭ 43 (-60.91%)
rbusteryet another dirbuster
Stars: ✭ 21 (-80.91%)
psolving-paradigmsCommon problems of dynamic programming methods and techniques, including prerequisites, for competitive programmers.
Stars: ✭ 34 (-69.09%)
scannerOpenCV document scanner
Stars: ✭ 36 (-67.27%)
CloudHunterFind unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them
Stars: ✭ 31 (-71.82%)
netscanA fast TCP port scanner
Stars: ✭ 63 (-42.73%)
DumbDumain Bruteforcer - a fast and flexible domain bruteforcer
Stars: ✭ 54 (-50.91%)
DataProfilerWhat's in your data? Extract schema, statistics and entities from datasets
Stars: ✭ 843 (+666.36%)
instabruteInstagram Brute Forcer
Stars: ✭ 135 (+22.73%)
cassler🕷️ 🕷️ 🕷️ Validate SSL Certificates around web
Stars: ✭ 55 (-50%)
WPCrackerWordPress pentest tool
Stars: ✭ 34 (-69.09%)
moodlescanTool for scan vulnerabilities in Moodle platforms
Stars: ✭ 54 (-50.91%)
CreditCardScannerAndroid Credit Card Scanner using CameraX and ML Kit
Stars: ✭ 24 (-78.18%)
WSD-pythonWeb Services for Devices (WSD) tools and utilities for cross platform support
Stars: ✭ 22 (-80%)
quick-scriptsA collection of my quick and dirty scripts for vulnerability POC and detections
Stars: ✭ 73 (-33.64%)
RFMapRFMap - Radio Frequency Mapper
Stars: ✭ 23 (-79.09%)
beholder web一款监控端口变化的系统——beholder_web端
Stars: ✭ 18 (-83.64%)
RC-exploiterNOT SUPORTED ANYMORE -- try resource_files repository (mosquito)
Stars: ✭ 50 (-54.55%)
aqua-helmHelm Charts For Installing Aqua Security Components
Stars: ✭ 68 (-38.18%)
backtrexBacktracking behaviour to solve discrete problems by brute force
Stars: ✭ 22 (-80%)
PXXTFFramework For Exploring kernel vulnerabilities, network vulnerabilities ✨
Stars: ✭ 23 (-79.09%)
Inventory KameraScans Genshin Impact characters, artifacts, and weapons from the game window into a JSON file.
Stars: ✭ 348 (+216.36%)
request smugglerHttp request smuggling vulnerability scanner
Stars: ✭ 203 (+84.55%)
Hemmelig.appKeep your sensitive information out of chat logs, emails, and more with encrypted secrets.
Stars: ✭ 183 (+66.36%)
secure-pipeline-advisorImprove your code security by running different security checks/validation in a simple way.
Stars: ✭ 25 (-77.27%)
password-listPassword lists with top passwords to optimize bruteforce attacks
Stars: ✭ 174 (+58.18%)