WatchdogWatchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.
Stars: ✭ 345 (+104.14%)
ExploitpackExploit Pack -The next generation exploit framework
Stars: ✭ 728 (+330.77%)
Envizonnetwork visualization & vulnerability management/reporting
Stars: ✭ 382 (+126.04%)
CatnipCat-Nip Automated Basic Pentest Tool - Designed For Kali Linux
Stars: ✭ 108 (-36.09%)
YasuoA ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Stars: ✭ 517 (+205.92%)
EvillimiterTool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.
Stars: ✭ 764 (+352.07%)
OsmedeusFully automated offensive security framework for reconnaissance and vulnerability scanning
Stars: ✭ 3,391 (+1906.51%)
Stowaway👻Stowaway -- Multi-hop Proxy Tool for pentesters
Stars: ✭ 500 (+195.86%)
JwtxploiterA tool to test security of json web token
Stars: ✭ 130 (-23.08%)
PompemFind exploit tool
Stars: ✭ 786 (+365.09%)
CloakifyCloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
Stars: ✭ 1,136 (+572.19%)
Dumpsterfire"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Stars: ✭ 775 (+358.58%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (+538.46%)
Impost3r👻Impost3r -- A linux password thief
Stars: ✭ 355 (+110.06%)
AirmasterUse ExpiredDomains.net and BlueCoat to find useful domains for red team.
Stars: ✭ 150 (-11.24%)
HabuHacking Toolkit
Stars: ✭ 635 (+275.74%)
PacketwhisperPacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.
Stars: ✭ 405 (+139.64%)
Sn1perAttack Surface Management Platform | Sn1perSecurity LLC
Stars: ✭ 4,897 (+2797.63%)
SusanooA REST API security testing framework.
Stars: ✭ 287 (+69.82%)
DotdotslashSearch for Directory Traversal Vulnerabilities
Stars: ✭ 297 (+75.74%)
BlackmambaC2/post-exploitation framework
Stars: ✭ 544 (+221.89%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+702.96%)
SipptsSet of tools to audit SIP based VoIP Systems
Stars: ✭ 116 (-31.36%)
WebpocketExploit management framework
Stars: ✭ 142 (-15.98%)
RescopeRescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
Stars: ✭ 156 (-7.69%)
ConsolemeA Central Control Plane for AWS Permissions and Access
Stars: ✭ 2,631 (+1456.8%)
GitmailsAn information gathering tool to collect git commit emails in version control host services
Stars: ✭ 142 (-15.98%)
DnsbinThe request.bin of DNS request
Stars: ✭ 157 (-7.1%)
BbrAn open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
Stars: ✭ 142 (-15.98%)
MinesweeperA Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
Stars: ✭ 162 (-4.14%)
Netsec Ps ScriptsCollection of PowerShell network security scripts for system administrators.
Stars: ✭ 139 (-17.75%)
NetpwnTool made to automate tasks of pentesting.
Stars: ✭ 152 (-10.06%)
Personal Security Checklist🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
Stars: ✭ 2,388 (+1313.02%)
Cli🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
Stars: ✭ 2,151 (+1172.78%)
EnumdbRelational database brute force and post exploitation tool for MySQL and MSSQL
Stars: ✭ 167 (-1.18%)
Web ShellsSome of the best web shells that you might need!
Stars: ✭ 162 (-4.14%)
WebhashcatHashcat web interface
Stars: ✭ 151 (-10.65%)
Clr MeterpreterThe full story of the CLR implementation of Meterpreter
Stars: ✭ 137 (-18.93%)
RelayerSMB Relay Attack Script
Stars: ✭ 136 (-19.53%)
Sec ToolsDocker images for infosec tools
Stars: ✭ 135 (-20.12%)
ReconnoitreA security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Stars: ✭ 1,824 (+979.29%)
PatrowlenginesPatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform
Stars: ✭ 162 (-4.14%)
DiscordcryptEnd-To-End File & Message Encryption For Discord
Stars: ✭ 150 (-11.24%)
EncpipeThe dum^H^H^Hsimplest encryption tool in the world.
Stars: ✭ 135 (-20.12%)
ApisecuritybestpracticesResources to help you keep secrets (API keys, database credentials, certificates, ...) out of source code and remediate the issue in case of a leaked API key. Made available by GitGuardian.
Stars: ✭ 1,745 (+932.54%)
DirmapAn advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
Stars: ✭ 2,127 (+1158.58%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1040.83%)
O365sprayUsername enumeration and password spraying tool aimed at Microsoft O365.
Stars: ✭ 133 (-21.3%)
Rastrea2rCollecting & Hunting for IOCs with gusto and style
Stars: ✭ 169 (+0%)
Xssor2XSS'OR - Hack with JavaScript.
Stars: ✭ 1,969 (+1065.09%)
OpensquatDetection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Stars: ✭ 149 (-11.83%)
Nimscan🚀 Fast Port Scanner 🚀
Stars: ✭ 134 (-20.71%)
TrigmapA wrapper for Nmap to quickly run network scans
Stars: ✭ 132 (-21.89%)
GsilGitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
Stars: ✭ 1,764 (+943.79%)
DarksideTool Information Gathering & social engineering Write By [Python,JS,PHP]
Stars: ✭ 159 (-5.92%)
DnsmorphDomain name permutation engine written in Go
Stars: ✭ 148 (-12.43%)
Pocsuite3pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Stars: ✭ 2,213 (+1209.47%)