Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/vanhauser-thc/thc-ipv6
IPv6 attack toolkit
attacklab attacks denial-of-service ipv6 ipv6-research man-in-the-middle man-in-the-middle-attack penetration-testing thc
Last synced: 06 Jul 2024
![](https://github.com/vanhauser-thc.png)
https://github.com/ivan-sincek/secure-website
Secure website with a registration, sign in, session management, and CRUD controls.
apache crud-controls css-flexbox defensive-security ethical-hacking hardening offensive-security penetration-testing php php-data-object red-team-engagement registration security session-management sign-in ssl-certificate tls-certificate website
Last synced: 05 Jul 2024
![](https://github.com/ivan-sincek.png)
https://github.com/decal/werdlists
:keyboard: Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases
attack-modeling awesome-list computer-science dictionary-search domain-name dynamic-analysis environment-variables exploit-development html-entities http-headers information-security network-discovery open-source password-cracker penetration-testing regular-expression security-tools test-automation test-data threat-hunting
Last synced: 05 Jul 2024
![](https://github.com/decal.png)
https://github.com/usama-365/hackipy
Hacking, pen-testing, and cyber-security related tools built with Python.
cybersecurity ethical ethical-hacking free hacking hackipy opensource penetration-test penetration-testing pentesting python python3 scapy script scripts software testing testing-tools tool tools
Last synced: 04 Jul 2024
![](https://github.com/usama-365.png)
https://github.com/RiccardoAncarani/python_offensive_scripts
A collection of Python scripts to automate/help during a pentest
penetration-testing python security-tools
Last synced: 04 Jul 2024
![](https://github.com/RiccardoAncarani.png)
https://github.com/dmdhrumilmistry/pyhtools
A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.
apihacking dmdhrumilmistry hacking hacking-tool hacking-tools hackingwithpython malware-development penetration-testing python python3 ransomware remoteaccess telegram-hack web-hac web-security
Last synced: 04 Jul 2024
![](https://github.com/dmdhrumilmistry.png)
https://github.com/scipag/httprecon-nse
Advanced web server fingerprinting for Nmap
fingerprinting lua nmap nmap-scan-script nmap-scripts nse nsescript penetration-testing vulnerability-assessment vulnerability-detection vulnerability-identification vulnerability-scanners webserver webserver-benchmarking
Last synced: 02 Jul 2024
![](https://github.com/scipag.png)
https://github.com/JacobMisirian/DblTekGoIPPwn
Tool to check if an IP of a DblTek GoIP is vulnerable to a challenge-response login system, send SMS messages from the system, execute remote commands botnet style, and generate responses to challenges.
challenge-response dbltek-goip gsm gsm-modem hacking-tool penetration-testing sms sms-gateway telnet voip vulnerability
Last synced: 02 Jul 2024
![](https://github.com/JacobMisirian.png)
https://github.com/Ignitetechnologies/Vulnhub-CTF-Writeups
This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.
ctf ctf-challenges ctf-writeups oscp oscp-prep penetration-testing vulnhub
Last synced: 29 Jun 2024
![](https://github.com/Ignitetechnologies.png)
https://github.com/Cyber-Guy1/API-SecurityEmpire
API Security Project aims to present unique attack & defense methods in API Security field
api apisecurity bug-bounty bugbounty bugbountytips cybersec cybersecurity information-security infosec penetration-testing tips
Last synced: 28 Jun 2024
![](https://github.com/Cyber-Guy1.png)
https://github.com/3xploitGuy/lazyaircrack
Automated tool for WiFi hacking.
aircrack-ng bash-script hacking handshake linux-shell penetration-testing wifi wifi-hacking
Last synced: 26 Jun 2024
![](https://github.com/3xploitGuy.png)
https://github.com/YagamiiLight/Cerberus
一款功能强大的漏洞扫描器,子域名爆破使用aioDNS,asyncio异步快速扫描,覆盖目标全方位资产进行批量漏洞扫描,中间件信息收集,自动收集ip代理,探测Waf信息时自动使用来保护本机真实Ip,在本机Ip被Waf杀死后,自动切换代理Ip进行扫描,Waf信息收集(国内外100+款waf信息)包括安全狗,云锁,阿里云,云盾,腾讯云等,提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等),支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能
bypass hacking-tool middleware penetration-testing proxy python security-tools sql-injection ssrf waf websecurity xss
Last synced: 26 Jun 2024
![](https://github.com/YagamiiLight.png)
https://github.com/gh0stkey/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...
bugbounty fuzz fuzzing hacking penetration-testing pentesting
Last synced: 26 Jun 2024
![](https://github.com/gh0stkey.png)
https://github.com/cvar1984/sqlscan
Quick SQL Scanner, Dorker, Webshell injector PHP
deface-tools defacement dorking framework fuzzy-search geektool hacking hacktoberfest penetration-testing pentest pentest-tool pentesting php scanner-web sql sql-injection
Last synced: 25 Jun 2024
![](https://github.com/Cvar1984.png)
https://github.com/itskindred/php-web-shell
A Simple PHP Web Shell used for Remote Code Execution.
ctf-tools hacking penetration-testing pentesting php rce remote-code-execution reverse-shell web-server-exploit web-shell webshell website
Last synced: 25 Jun 2024
![](https://github.com/itsKindred.png)
https://github.com/wireghoul/htshells
Self contained htaccess shells and attacks
apache exploit htaccess penetration-testing polyglot security webshell
Last synced: 25 Jun 2024
![](https://github.com/wireghoul.png)
https://github.com/Karmaz95/crimson
Web Application Security Testing Tools
application-security penetration-testing pentesting-tools vulnerability-scanners
Last synced: 25 Jun 2024
![](https://github.com/Karmaz95.png)
https://github.com/trickest/dsieve
Filter and enrich a list of subdomains by level
bugbounty enumeration infosec infosectools penetration-testing penetration-testing-tools pentesting pentesting-tools security subdomain subdomain-enumeration subdomain-finder subdomain-scanner
Last synced: 25 Jun 2024
![](https://github.com/trickest.png)
https://github.com/edoardottt/missing-cve-nuclei-templates
Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.
automation bug-bounty bug-hunting bugbounty bugbounty-tool bugbountytips cve cve-scanning hacking nuclei nuclei-engine nuclei-templates penetration-testing pentesting projectdiscovery security security-tools vulnerability-detection vulnerability-scanners
Last synced: 25 Jun 2024
![](https://github.com/edoardottt.png)
https://github.com/t3l3machus/toxssin
An XSS exploitation command-line interface and payload generator.
cross-site-scripting exploitation hacking javascript penetration-testing pentesting-tools python web-penetration-testing xss xss-exploitation xss-vulnerability
Last synced: 25 Jun 2024
![](https://github.com/t3l3machus.png)
https://github.com/Grunny/zap-cli
A simple tool for interacting with OWASP ZAP from the commandline.
owasp penetration-testing pentesting python security security-audit zap
Last synced: 25 Jun 2024
![](https://github.com/Grunny.png)
https://github.com/dwisiswant0/hinject
Host Header Injection Checker
bugbounty go golang penetration-testing
Last synced: 25 Jun 2024
![](https://github.com/dwisiswant0.png)
https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner
Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
bugbounty hacking hacking-tool penetration-testing penetration-testing-tools pentesting scanner security security-audit security-scanner security-tools vulnerability-scanners web-cache
Last synced: 25 Jun 2024
![](https://github.com/Hackmanit.png)
https://github.com/sc0tfree/netbyte
Netbyte is a Netcat-style tool that facilitates probing proprietary TCP and UDP services. It is lightweight, fully interactive and provides formatted output in both hexadecimal and ASCII.
cli hexadecimal netcat penetration-testing pentesting python
Last synced: 24 Jun 2024
![](https://github.com/sc0tfree.png)
https://github.com/diegocr/netcat
NetCat for Windows
c netcat network penetration-testing pentesting security windows
Last synced: 24 Jun 2024
![](https://github.com/diegocr.png)
https://github.com/security-cheatsheet/wireshark-cheatsheet
Wireshark Cheat Sheet
cheat-sheet cheat-sheets cheatsheet cyber-security cybersecurity gitbook github information-security infosec network-analysis network-testing penetration-test penetration-testing security wireshark wireshark-cheat-sheet wireshark-cheatsheet wireshark-documantion
Last synced: 24 Jun 2024
![](https://github.com/security-cheatsheet.png)
https://swisskyrepo.github.io/PayloadsAllTheThings/
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
bounty bugbounty bypass cheatsheet enumeration hacking hacktoberfest methodology payload payloads penetration-testing pentest privilege-escalation redteam security vulnerability web-application
Last synced: 21 Jun 2024
![](https://github.com/swisskyrepo.png)
https://github.com/pavanw3b/sh00t
Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and had to regret later? Sh00t is a highly customizable, intelligent platform that understands the life of bug hunters and emphasizes on manual security testing.
django penetration-testing python security
Last synced: 21 Jun 2024
![](https://github.com/pavanw3b.png)
https://github.com/Correia-jpv/fucking-awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things. With repository stars⭐ and forks🍴
awesome awesome-list list lists penetration-testing penetration-testing-tools pentest pentest-tool pentesting pentesting-tools
Last synced: 18 Jun 2024
![](https://github.com/Correia-jpv.png)
https://github.com/Correia-jpv/fucking-awesome-web-security
🐶 A curated list of Web Security materials and resources. With repository stars⭐ and forks🍴
awesome awesome-list hacking injection list penetration-testing pentest pentesting security security-tools web webapp websecurity website
Last synced: 18 Jun 2024
![](https://github.com/Correia-jpv.png)
https://github.com/ArchStrike/ArchStrike
An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
arch-linux arch-pkgbuilds archstrike armv6 armv7 armv8 distro hackers hacking linux linux-distribution odroid-c2 penetration-testing pentesting raspberry-pi repository security security-audit security-professionals tools
Last synced: 17 Jun 2024
![](https://github.com/ArchStrike.png)
https://github.com/penetrate2hack/ITWSV
ITWSV- Integrated Tool for Web Security Vulnerability
auto-pentest kali kali-linux kali-linux-hacking kali-scripts kalilinux penetration-testing pentest pentest-tool pentesting security security-audit security-scanner security-testing security-vulnerability vulnerability vulnerability-detection vulnerability-scanners
Last synced: 17 Jun 2024
![](https://github.com/penetrate2hack.png)
https://github.com/frizb/Vanquish
Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.
kali-linux offensive-security oscp penetration-testing penetration-testing-framework python vulnerability-assessment vulnerability-scanners
Last synced: 17 Jun 2024
![](https://github.com/frizb.png)
https://github.com/initstring/evil-ssdp
Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.
hacking penetration-testing pentesting
Last synced: 17 Jun 2024
![](https://github.com/initstring.png)
https://github.com/lmco/dart
DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.
dart documentation-generator documentation-tool offline penetration-testing red-team red-team-engagement
Last synced: 17 Jun 2024
![](https://github.com/lmco.png)
https://github.com/0xsyr0/OSCP
OSCP Cheat Sheet
cheat-sheet cheatsheet offensive offensive-security offsec oscp oscp-guide penetration-testing pentesting security
Last synced: 17 Jun 2024
![](https://github.com/0xsyr0.png)
https://github.com/ivan-sincek/powershell-reverse-tcp
PowerShell scripts for communicating with a remote host.
bind-shell bind-tcp bug-bounty defensive-security ethical-hacking networking offensive-security penetration-testing powershell red-team-engagement reverse-shell reverse-tcp security tcp
Last synced: 17 Jun 2024
![](https://github.com/ivan-sincek.png)
https://github.com/InfosecMatter/Minimalistic-offensive-security-tools
A repository of tools for pentesting of restricted and isolated environments.
active-directory brute-force login-automation login-brute-force-attacks penetration-testing penetration-testing-tools port-scanner port-scanning portscan portscanner powershell restricted-environments security-audit security-automation smb windows
Last synced: 17 Jun 2024
![](https://github.com/InfosecMatter.png)
https://github.com/yeahhub/Kali-Linux-Ebooks
Top 20 Kali Linux Related E-books (Free Download)
books ebooks hacking kali-linux-ebooks kalilinux metasploit penetration-testing
Last synced: 17 Jun 2024
![](https://github.com/yeahhub.png)
https://github.com/Samsar4/Ethical-Hacking-Labs
Practical Ethical Hacking Labs 🗡🛡
ethical-hacking-labs hacking linux penetration-testing pentesting security security-tools tutorial tutorials
Last synced: 16 Jun 2024
![](https://github.com/Samsar4.png)
https://github.com/0xsyr0/Awesome-Cybersecurity-Handbooks
A huge chunk of my personal notes since I started playing CTFs and working as a Red Teamer.
capture-the-flag ctf cybersecurity handbooks infosec offensive offensive-security penetration-testing pentesting red-teaming security
Last synced: 16 Jun 2024
![](https://github.com/0xsyr0.png)
https://github.com/netlas-io/netlas-dorks
A list of dorks for the Netlas.io search engine, with which you can find millions of objects in the boundless IoE. Contains queries to search for IoT elements, protocols, communication tools, remote access, and more. Over time, the list will grow.
osint penetration-testing security-tools
Last synced: 16 Jun 2024
![](https://github.com/netlas-io.png)
https://github.com/mishakorzik/AllHackingTools
All-in-One Hacking Tools For Hackers! And more hacking tools! For termux.
all-in-one bruteforce cibersecurity ctf-tools ddos-attacks hacking hacking-tool packages password-attack penetration-testing programming sms-bomber termux termux-hacking termux-tool tools web-hacking wireless-attacks xss-attacks xss-detection
Last synced: 15 Jun 2024
![](https://github.com/mishakorzik.png)
https://github.com/ByteSnipers/awesome-pentest-cheat-sheets
Collection of cheat sheets useful for pentesting
cheat-sheet cheat-sheet-pentest penetration-testing penetration-testing-tools pentest pentest-cheat-sheets pentesting pentesting-resources
Last synced: 15 Jun 2024
![](https://github.com/ByteSnipers.png)
![](https://github.com/jr-robotics.png)
https://github.com/powerexploit/Ashok
Ashok is a OSINT Recon Tool , a.k.a :heart_eyes: Swiss Army knife .
banner-grabbing cmsdetecter dns geoip-lookup github githubrecon googledork hacking-tool http-headers linkextractor nmap-scanning osint penetration-testing recon-tools reconnaissance subdomain-finder subnet-lookup wayback-machine
Last synced: 14 Jun 2024
![](https://github.com/powerexploit.png)
https://github.com/Viralmaniar/Passhunt
Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
cybersecurity default-credentials default-password password penetration-testing pentest-tool security security-testing
Last synced: 14 Jun 2024
![](https://github.com/Viralmaniar.png)
https://github.com/v4d1/Dome
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
bugbounty enumeration hacking-tool osint penetration-testing pentesting recon reconnaissance redteam redteam-tools subdomain subdomain-brute subdomain-enumeration subdomain-finder subdomain-scanner
Last synced: 14 Jun 2024
![](https://github.com/v4d1.png)
https://github.com/enemy-submarine/pidrila
Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer
appsec bug-bounty dirbuster hacking netstalking penetration-testing pentest pentesting python scanner scanner-web security
Last synced: 14 Jun 2024
![](https://github.com/enemy-submarine.png)
https://github.com/hueristiq/xurlfind3r
A command-line interface (CLI) based passive URLs discovery utility. It is designed to efficiently identify known URLs of given domains by tapping into a multitude of curated online passive sources.
bug-bounty bug-bounty-tools contentdiscovery ethical-hacking ethical-hacking-tools go golang osint osint-tools penetration-testing penetration-testing-tools reconnaissance red-teaming red-teaming-tools web-security
Last synced: 14 Jun 2024
![](https://github.com/hueristiq.png)
https://github.com/kostas-pa/LFITester
LFITester is a Python3 program that automates the detection and exploitation of Local File Inclusion (LFI) vulnerabilities on a server.
bugbounty crawler cybersecurity enumeration exploitation fuzzing hacking lfi lfi-detection lfi-exploitation lfi-vulnerability penetration-testing penetration-testing-tools pentest-tool pentesting python web-hacking webhacking
Last synced: 14 Jun 2024
![](https://github.com/kostas-pa.png)
https://github.com/iluxonchik/blackhat-python-book
Code from Blackhat Python book
penetration-testing pentesting python python-3 python3 security security-automation
Last synced: 14 Jun 2024
![](https://github.com/iluxonchik.png)
https://github.com/vavkamil/awesome-vulnerable-apps
Awesome Vulnerable Applications
awesome awesome-list bug bugbounty hacking penetration-testing security vulnerable vulnerable-applications
Last synced: 14 Jun 2024
![](https://github.com/vavkamil.png)
https://github.com/vladko312/SSTImap
Automatic SSTI detection tool with interactive interface
information-security penetration-testing penetration-testing-tools pentest pentest-tool pentesting pentesting-tools python rce ssti
Last synced: 14 Jun 2024
![](https://github.com/vladko312.png)
https://github.com/edoardottt/cariddi
Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
bugbounty crawler crawling endpoint-discovery endpoints go golang hacktoberfest infosec osint penetration-testing pentesting recon reconnaissance redteam scraper secret-keys secrets-detection security security-tools
Last synced: 14 Jun 2024
![](https://github.com/edoardottt.png)
https://github.com/praetorian-inc/noseyparker
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
credentials devsecops penetration-testing rust scanner secrets secrets-detection security security-tools
Last synced: 14 Jun 2024
![](https://github.com/praetorian-inc.png)
https://github.com/Jewel591/xssmap
XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具
penetration-testing pentesting python3 sqlmap xss xss-attacks xss-detection xss-exploitation xss-scanner xss-vulnerability
Last synced: 14 Jun 2024
![](https://github.com/Jewel591.png)
https://github.com/ssl/ezXSS
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
alert blind blind-xss bug bugbounty easy easy-to-use payload penetration-testing php redteam redteaming test xss xss-attacks xss-detection xss-exploitation xss-injection xss-scanner xss-vulnerability
Last synced: 14 Jun 2024
![](https://github.com/ssl.png)
https://github.com/Keramas/mssqli-duet
SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing
active-directory application-security burp-extensions burp-plugin mssql penetration-testing sql-injection user-enumeration windows
Last synced: 14 Jun 2024
![](https://github.com/Keramas.png)
https://github.com/chrispetrou/FDsploit
File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
directory-traversal directory-traversal-vulnerability enumeration exploitation file-include fuzzing hacking inclusion lfi lfi-shells lfi-vulnerability oscp owasp path-traversal penetration-testing pentesting rfi security security-tools web-security
Last synced: 14 Jun 2024
![](https://github.com/chrispetrou.png)
https://github.com/wireghoul/dotdotpwn
DotDotPwn - The Directory Traversal Fuzzer
fuzzer penetration-testing perl security traversal
Last synced: 14 Jun 2024
![](https://github.com/wireghoul.png)
https://github.com/d4rckh/vaf
Vaf is a cross-platform very advanced and fast web fuzzer written in nim
bruteforce bug-bounty bugbounty burpsuite fuzzer fuzzing hacking hacking-tools nim penetration-testing pentest-tool recon security-tools vaf web xss
Last synced: 14 Jun 2024
![](https://github.com/d4rckh.png)
https://github.com/skynet0x01/tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
bug-bounty bugbounty enumerate-subdomains hackers hacking information-gathering infosec penetration-testers penetration-testing pentest pentesting python recon reconnaissance scan scanner security-tools subdomain-enumeration subdomain-scanner subdomains
Last synced: 14 Jun 2024
![](https://github.com/skynet0x01.png)
https://github.com/kraloveckey/venom
👽 The collection of awesome software, tools, libraries, documents, books, resources and cool stuff about information security, penetration testing and offensive cybersecurity.
answers awesome awesome-list cyber-security cybersecurity devops information-security knowledge linux network offensive-security penetration-testing resources security security-tools skills sysadmin sysops unix
Last synced: 13 Jun 2024
![](https://github.com/kraloveckey.png)
https://github.com/sham00n/buster
An advanced tool for email reconnaissance
cybersecurity emails infosec inteligence osint penetration-testing recon social-accounts
Last synced: 13 Jun 2024
![](https://github.com/sham00n.png)
https://github.com/philippnormann/zigbear
🐝 Zigbee security research toolkit for the RaspBee, nRF52840 and CC2531 radio modules.
ieee802154 iot-security penetration-testing raspbee research security-tools securtiy zigbee
Last synced: 13 Jun 2024
![](https://github.com/philippnormann.png)
https://github.com/chenjj/espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
dkim dmarc dmarc-bypass email-spoof hacking penetration-testing phishing phishing-attacks security security-tools smtp spf spoofing spoofing-emails
Last synced: 12 Jun 2024
![](https://github.com/chenjj.png)
https://github.com/sudosammy/knary
A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams/Lark/Telegram & Pushover support
bugbounty burpsuite canary ctf-tools discord discord-bot dns-canary microsoft-teams offensive-security penetration-testing pentesting pushover-notifications security-tools slackbot
Last synced: 12 Jun 2024
![](https://github.com/sudosammy.png)
https://github.com/Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
active-directory active-directory-cheatsheet active-directory-exploitation cheat-sheet cheatsheet enumeration exploitation hacking hacking-cheasheet hacking-tool hacking-tools infosec penetration-testing pentesting powershell privilege-escalation security windows windows-active-directory
Last synced: 12 Jun 2024
![](https://github.com/Integration-IT.png)
https://github.com/mhmdiaa/second-order
Second-order subdomain takeover scanner
crawler crawling infosec mapping penetration-testing penetration-testing-tools pentesting recon reconnaissance security security-tools web-application-security wordlist wordlist-generator
Last synced: 11 Jun 2024
![](https://github.com/mhmdiaa.png)
https://github.com/edoardottt/scilla
Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration
bugbounty directories-enumeration dns-enumeration enumeration hacking hacking-tool hacktoberfest information-gathering information-retrieval network penetration-testing pentesting port-enumeration portscanner recon reconnaissance security security-tools subdomain-scanner subdomains-enumeration
Last synced: 11 Jun 2024
![](https://github.com/edoardottt.png)
https://github.com/codingo/Interlace
Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
bugbounty cidr-notation enumeration hacking hacking-tool linux multithreading oscp oscp-tools penetration-testing security security-tools service-enumeration thread
Last synced: 11 Jun 2024
![](https://github.com/codingo.png)
https://github.com/daffainfo/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
bug bugbounty bugbountytips bypass hacking infosec payload payloads penetration-testing pentest reconnaissance security vulnerability
Last synced: 10 Jun 2024
![](https://github.com/daffainfo.png)
https://github.com/ivan-sincek/invoker
Penetration testing utility and antivirus assessment tool.
access-token bytecode-injection c-plus-plus dll-injection dump-memory ethical-hacking hook-procedure malware offensive-security penetration-testing process-ghosting process-hollowing red-team-engagement reverse-tcp security sticky-keys system-calls task-scheduler windows windows-penetration-testing
Last synced: 10 Jun 2024
![](https://github.com/ivan-sincek.png)
https://github.com/kh4sh3i/smartrecon
smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter
bug-bounty-automation bugbounty dnsgen eyewitness feroxbuster hackerone hacking httprobe httpx massdns penetration-testing pentest pentest-scripts recon reconnaissance redteam shuffledns sqlmap subfinder tools
Last synced: 08 Jun 2024
![](https://github.com/kh4sh3i.png)
https://github.com/zan8in/afrog
A Security Tool for Bug Bounty, Pentest and Red Teaming.
afrog bug-bounty penetration-testing pentest poc red-teaming vulnerability-scanner vulnerability-scanning-tools
Last synced: 08 Jun 2024
![](https://github.com/zan8in.png)
https://github.com/xm1k3/cent
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
bugbounty golang hacktoberfest nuclei nuclei-templates penetration-testing pentesting templates
Last synced: 07 Jun 2024
![](https://github.com/xm1k3.png)
https://github.com/LyleMi/Learn-Web-Hacking
Study Notes For Web Hacking / Web安全学习笔记
hacking penetration-testing pentesting security study-notes web-hacking
Last synced: 07 Jun 2024
![](https://github.com/LyleMi.png)
https://github.com/ztgrace/changeme
A default credential scanner.
default-creds infosec penetration-testing python security security-scanner security-tools
Last synced: 06 Jun 2024
![](https://github.com/ztgrace.png)
https://github.com/1N3/AttackSurfaceManagement
Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty
attack-surface attacksurface automated bugbounty bugbounty-platform bugbounty-tool cybersecurity hacking-tool hacking-tools osint penetration-testing penetration-testing-framework penetration-testing-tools reconnaissance redteam-tools vulnerability-management vulnerability-scanners
Last synced: 06 Jun 2024
![](https://github.com/1N3.png)
https://github.com/Aju100/VulWebaju
VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.
bugbounty hacking hacktoberfest owasp-top-10 penetration-testing pentesting
Last synced: 06 Jun 2024
![](https://github.com/Aju100.png)
https://github.com/mcnamee/huntkit
Docker - Ubuntu with a bunch of PenTesting tools and wordlists
docker penetration-testing pentest pentesting
Last synced: 06 Jun 2024
![](https://github.com/mcnamee.png)
https://github.com/RAJANAGORI/Nightingale
It's a Docker Environment for Pentesting which having all the required tool for VAPT.
bugbounty cybersecurity docker-image hacking hacking-tools htb nightingale osint owasp penetration-testing pentest-tool pentesting platform-independent vulnerabilities
Last synced: 06 Jun 2024
![](https://github.com/RAJANAGORI.png)
https://github.com/lefayjey/linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
active-directory adcs adsecurity bloodhound enumeration exploitation hacking impacket kerberoast kerberos mssql penetration-testing pentest pentest-tool pentesting
Last synced: 05 Jun 2024
![](https://github.com/lefayjey.png)
https://github.com/Bywalks/DarkAngel
DarkAngel 是一款全自动白帽漏洞扫描器,从hackerone、bugcrowd资产监听到漏洞报告生成、漏洞URL截屏、消息通知。
bugbounty penetration-testing security-tools
Last synced: 05 Jun 2024
![](https://github.com/Bywalks.png)
https://github.com/seeu-inspace/easyg
Here I gather all the resources about hacking that I find interesting
automation bughunting penetration-testing red-teaming
Last synced: 05 Jun 2024
![](https://github.com/seeu-inspace.png)
https://github.com/eslam3kl/3klector
3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company
bugbounty-tool information-gathering penetration-testing python reconnaissance
Last synced: 05 Jun 2024
![](https://github.com/eslam3kl.png)
https://github.com/snovvcrash/DivideAndScan
Divide full port scan results and use it for targeted Nmap runs
masscan nmap penetration-testing port-scanning python-automation rustscan
Last synced: 05 Jun 2024
![](https://github.com/snovvcrash.png)
https://github.com/gh0x0st/pythonizing_nmap
A detailed guide showing you different ways you can incorporate Python into your workflows around Nmap.
enumeration nmap nmap-scripts nmap-xml offensive-security oscp oscp-journey oscp-prep penetration-testing python3 security-tools sqlite3
Last synced: 05 Jun 2024
![](https://github.com/gh0x0st.png)
https://github.com/7Ragnarok7/DEDMAP
A Network Automation framework focused on Cyber-Security
7ragnarok7 automation cross-platform darkweb framework hacking network network-scanning networking nmap penetration-testing pentest-tool pentesting port-scanner port-scanning python tcp udp wan wan-networks
Last synced: 05 Jun 2024
![](https://github.com/7Ragnarok7.png)
https://github.com/rm1984/IMAPLoginTester
A simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.
credentials email hacking imap imaplib login mail mail-login password passwords penetration-testing python python3 script socks5
Last synced: 05 Jun 2024
![](https://github.com/rm1984.png)
https://github.com/the0cp/awesome-ddos-tools
Collection of several DDos tools.
attack awesome awesome-list awesome-lists cybersecurity ddos ddos-attack ddos-attack-tools ddos-attacks ddos-script ddos-tool dos hacking hacking-tool infosec network penetration-testing pentesting security security-tools
Last synced: 05 Jun 2024
![](https://github.com/the0cp.png)
https://github.com/passtheticket/DCDumlu
Enumeration and persistence on the Active Directory
active-directory activedirectory enumeration ldap penetration-testing persistence python-ldap security security-tools
Last synced: 05 Jun 2024
![](https://github.com/passtheticket.png)
https://github.com/fierceoj/ShonyDanza
A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.
blue-team exploits information-gathering malware-detection malware-identification penetration-testing pentesting pre-configure purple-team reconnaissance red-team scanning security-research security-tools shodan shodan-api shodan-python shonydanza vulnerability-detection vulnerability-identification
Last synced: 05 Jun 2024
![](https://github.com/fierceoj.png)
https://github.com/exbotanical/brutus
extensible exploitation framework shipped on a modular and multi-tasking architecture
arp-spoofing botnet concurrency ethical-hacking exploitation-framework hacking-tool malware mitm-attacks modular-architecture parallelism penetration-testing remote-admin-tool threading trojan
Last synced: 05 Jun 2024
![](https://github.com/exbotanical.png)
https://github.com/cytopia/smtp-user-enum
SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.
cytopia-sec enumeration penetration-testing pentest pentest-tool pentesting pentesting-python pentesting-tools smtp smtp-server smtp-user-enumeration user-enumeration
Last synced: 05 Jun 2024
![](https://github.com/cytopia.png)
https://github.com/jonaslejon/lolcrawler
Headless web crawler for bugbounty and penetration-testing/redteaming
bugbounty crawler docker penetration-testing penetration-testing-tools redteam redteam-tools redteaming
Last synced: 05 Jun 2024
![](https://github.com/jonaslejon.png)
https://github.com/WSP-LAB/FUSE
A penetration testing tool for finding file upload bugs (NDSS 2020)
content-filtering-check file-upload-vulnerability penetration-testing
Last synced: 05 Jun 2024
![](https://github.com/WSP-LAB.png)
https://github.com/chopicalqui/KaliIntelligenceSuite
Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.
bugbounty data-mining intelligence-gathering kali-linux kali-linux-tools osint penetration-testing penetration-testing-framework
Last synced: 05 Jun 2024
![](https://github.com/chopicalqui.png)
https://github.com/R0X4R/snetra
A Python based scanner uses shodan-internetdb to scan the IP.
bugbounty penetration-testing penetration-testing-tools python3 shodan
Last synced: 05 Jun 2024
![](https://github.com/R0X4R.png)