Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Projects in Awesome Lists tagged with pentest-tool

A curated list of projects in awesome lists tagged with pentest-tool .

https://github.com/moond4rk/hackbrowserdata

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

browser browser-extension chrome edge firefox golang hacking macos pentest-tool windows

Last synced: 30 Dec 2024

https://github.com/moonD4rk/HackBrowserData

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

browser browser-extension chrome edge firefox golang hacking macos pentest-tool windows

Last synced: 26 Oct 2024

https://github.com/projectdiscovery/httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

bugbounty cli cybersecurity hacktoberfest http lib osint pentest-tool pipeline ssl-certificate

Last synced: 01 Jan 2025

https://github.com/six2dez/reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

bug-bounty bugbounty dns fuzzing hacking nuclei osint penetration-testing pentest pentest-tool pentesting recon reconnaissance scanner security security-tools subdomain vulnerabilities

Last synced: 01 Jan 2025

https://github.com/GhostTroops/scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

0day attack auto brute-force bugbounty bugbounty-tools golang hacker hacktools nmap nuclei pentest-tool recon security-scanner security-tools ssh tools vulnerabilities-scan vulnerability-detection vulnerability-scanners

Last synced: 31 Oct 2024

https://github.com/ghosttroops/scan4all

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

0day attack auto brute-force bugbounty bugbounty-tools golang hacker hacktools nmap nuclei pentest-tool recon security-scanner security-tools ssh tools vulnerabilities-scan vulnerability-detection vulnerability-scanners

Last synced: 31 Dec 2024

https://github.com/ffffffff0x/1earn

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

blueteam collection ctf hacking ics-security infosec linux-learning markdown-article pentest pentest-tool poc post-penetration redteam security security-tools study writeup

Last synced: 31 Dec 2024

https://github.com/mr-xn/burpsuite-collections

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

burp-extensions burp-requests burpsuite burpsuite-extender burpsuite-java burpsuite-tools burpsuite-xkeys hackbar hacktool j2eescan jar pentest-tool pentesting python-burp sendto shiro-burp sqlmap waf

Last synced: 03 Dec 2024

https://github.com/Mr-xn/BurpSuite-collections

有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file

burp-extensions burp-requests burpsuite burpsuite-extender burpsuite-java burpsuite-tools burpsuite-xkeys hackbar hacktool j2eescan jar pentest-tool pentesting python-burp sendto shiro-burp sqlmap waf

Last synced: 25 Oct 2024

https://github.com/h4ckforjob/dirmap

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。

dirscanner pentest-tool scanner scanner-web

Last synced: 01 Jan 2025

https://github.com/H4ckForJob/dirmap

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。

dirscanner pentest-tool scanner scanner-web

Last synced: 19 Nov 2024

https://github.com/itm4n/privesccheck

Privilege Escalation Enumeration Script for Windows

pentest-tool pentesting privilege-escalation windows windows-privilege-escalation

Last synced: 01 Jan 2025

https://github.com/itm4n/PrivescCheck

Privilege Escalation Enumeration Script for Windows

pentest-tool pentesting privilege-escalation windows windows-privilege-escalation

Last synced: 07 Nov 2024

https://github.com/nicocha30/ligolo-ng

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

golang offensive-security pentest-tool pentesting pivoting post-exploitation redteam tunneling

Last synced: 01 Jan 2025

https://github.com/christophetd/cloudflair

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

censys cloudflare pentest pentest-tool

Last synced: 01 Jan 2025

https://github.com/christophetd/CloudFlair

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

censys cloudflare pentest pentest-tool

Last synced: 30 Oct 2024

https://github.com/cujanovic/ssrf-testing

SSRF (Server Side Request Forgery) testing resources

pentest pentest-tool pentesting server-side-request-forgery ssrf

Last synced: 03 Nov 2024

https://github.com/mr-xn/redteam_blueteam_hw

红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具

blueteam hw pentest-tool readteam

Last synced: 02 Jan 2025

https://github.com/cujanovic/SSRF-Testing

SSRF (Server Side Request Forgery) testing resources

pentest pentest-tool pentesting server-side-request-forgery ssrf

Last synced: 25 Oct 2024

https://github.com/th3xace/sudo_killer

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

abuse-sudo ctf cve exploits linux-exploits misconfiguration oscp oscp-journey oscp-prep oscp-tools pentest pentest-tool privilege-escalation sudo sudo-exploitation

Last synced: 02 Jan 2025

https://github.com/TH3xACE/SUDO_KILLER

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.

abuse-sudo ctf cve exploits linux-exploits misconfiguration oscp oscp-journey oscp-prep oscp-tools pentest pentest-tool privilege-escalation sudo sudo-exploitation

Last synced: 07 Nov 2024

https://github.com/Mr-xn/RedTeam_BlueTeam_HW

红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具

blueteam hw pentest-tool readteam

Last synced: 21 Nov 2024

https://github.com/evilcos/xssor2

XSS'OR - Hack with JavaScript.

csrf encoding hack hacking-tool pentest pentest-tool probe xss

Last synced: 14 Oct 2024

https://github.com/zhzyker/dismap

Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点

cybersecurity detection fingerprint fingerprint-scanner golang-tools identification pentest-tool pentest-tools redteam redteam-tools security security-scan security-tools webscan

Last synced: 03 Jan 2025

https://github.com/Dliv3/Venom

Venom - A Multi-hop Proxy for Penetration Testers

ctf golang pentest-tool pentesting port-forward port-reuse proxy redteam security socks5 ssh-tunnel tunnel venom

Last synced: 01 Nov 2024

https://github.com/dliv3/venom

Venom - A Multi-hop Proxy for Penetration Testers

ctf golang pentest-tool pentesting port-forward port-reuse proxy redteam security socks5 ssh-tunnel tunnel venom

Last synced: 04 Jan 2025

https://github.com/itm4n/printspoofer

Abusing impersonation privileges through the "Printer Bug"

pentest-tool windows-privilege-escalation

Last synced: 30 Sep 2024

https://github.com/itm4n/PrintSpoofer

Abusing impersonation privileges through the "Printer Bug"

pentest-tool windows-privilege-escalation

Last synced: 05 Nov 2024

https://github.com/lefayjey/linwinpwn

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

active-directory adcs adsecurity bloodhound enumeration exploitation hacking impacket kerberoast kerberos mssql penetration-testing pentest pentest-tool pentesting

Last synced: 02 Jan 2025

https://github.com/ffffffff0x/f8x

红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool

bash bash-script ctf ctf-tools ffffffff0x linux pentest-tool shell vps

Last synced: 02 Jan 2025

https://github.com/lefayjey/linWinPwn

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

active-directory adcs adsecurity bloodhound enumeration exploitation hacking impacket kerberoast kerberos mssql penetration-testing pentest pentest-tool pentesting

Last synced: 21 Nov 2024

https://github.com/cytopia/pwncat

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

bind-shell cytopia-sec local-port-forward local-port-forwarding nc ncat netcat penetration-testing pentest pentest-tool pentesting pentesting-tool pivoting port-forwarding portforward pwncat remote-port-forward remote-port-forwarding remote-shell reverse-shell

Last synced: 03 Jan 2025

https://github.com/lutfumertceylan/top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

bugbounty bugbountytips infosec pentest-tool pentesting security vulnerability-detection vulnerability-research xss-detection

Last synced: 02 Dec 2024

https://github.com/bitbrute/evillimiter

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

hacking hacking-tool linux networking penetration-testing pentest-tool pentesting python security security-tools

Last synced: 03 Jan 2025

https://github.com/quentinhardy/odat

ODAT: Oracle Database Attacking Tool

oracle-database pentest pentest-tool privilege-escalation

Last synced: 02 Jan 2025

https://github.com/adminisme/serverscan

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

cobalt-strike golang linux macos nmap pentest-tool port-scanner-in-go security-scanner serverscan service-discovery win

Last synced: 02 Jan 2025

https://github.com/Adminisme/ServerScan

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

cobalt-strike golang linux macos nmap pentest-tool port-scanner-in-go security-scanner serverscan service-discovery win

Last synced: 19 Nov 2024

https://github.com/TryCatchHCF/Cloakify

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

av-evasion cipher cryptography data-exfiltration dlp exfiltration hacking hacking-tool hacking-tools infosec pentest pentest-tool pentest-tools pentesting privacy red-team security security-tools steganography stego

Last synced: 01 Nov 2024

https://github.com/zidansec/cloudpeler

CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.

bypass-cloudflare bypass-hostname bypass-waf cloudflare crimeflare crimeflare-next-generation crimepeler dns-security exploit hack-tool information-gathering osint-tool penetration-testing pentest-tool security-tools

Last synced: 17 Dec 2024

https://github.com/nccgroup/house

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

android frida mobile pentest-tool

Last synced: 29 Dec 2024

https://github.com/jeffzh3ng/fuxi

Penetration Testing Platform

penetration-testing pentest-tool security vulnerability

Last synced: 29 Dec 2024

https://github.com/zidansec/CloudPeler

CrimeFlare is a useful tool for bypassing websites protected by CloudFlare WAF, with this tool you can easily see the real IP of websites that have been protected by CloudFlare. The resulting information is certainly very useful for conducting further penetration testing, and analyzing websites with the same server.

bypass-cloudflare bypass-hostname bypass-waf cloudflare crimeflare crimeflare-next-generation crimepeler dns-security exploit hack-tool information-gathering osint-tool penetration-testing pentest-tool security-tools

Last synced: 30 Oct 2024

https://github.com/m8sec/CrossLinked

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

enumeration linkedin-scraper osint pentest-scripts pentest-tool python3 username-generator webscraping

Last synced: 06 Nov 2024

https://github.com/m8sec/crosslinked

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

enumeration linkedin-scraper osint pentest-scripts pentest-tool python3 username-generator webscraping

Last synced: 01 Jan 2025

https://github.com/viralmaniar/bigbountyrecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

blue-team bugbounty bugbounty-tool bugbountytips cybersecurity offensive-security osint pentest-tool pentesting purple-team purple-teams recon reconnaissance red-team red-teaming

Last synced: 30 Dec 2024

https://github.com/Viralmaniar/BigBountyRecon

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

blue-team bugbounty bugbounty-tool bugbountytips cybersecurity offensive-security osint pentest-tool pentesting purple-team purple-teams recon reconnaissance red-team red-teaming

Last synced: 21 Nov 2024

https://github.com/viralmaniar/passhunt

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

cybersecurity default-credentials default-password password penetration-testing pentest-tool security security-testing

Last synced: 01 Jan 2025

https://github.com/Viralmaniar/Passhunt

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

cybersecurity default-credentials default-password password penetration-testing pentest-tool security security-testing

Last synced: 27 Nov 2024

https://github.com/WyAtu/Perun

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners

Last synced: 19 Nov 2024

https://github.com/wyatu/perun

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

pentest-tool pentesting redteam scanner security security-tool vulnerability-scanners

Last synced: 03 Nov 2024

https://github.com/m4cs/babysploit

:baby: BabySploit Beginner Pentesting Toolkit/Framework Written in Python :snake:

beginner beginner-friendly ethical-hacking kali penetration-testing penetration-testing-framework pentest-tool pentesting python3 toolkit tools

Last synced: 04 Jan 2025

https://github.com/M4cs/BabySploit

:baby: BabySploit Beginner Pentesting Toolkit/Framework Written in Python :snake:

beginner beginner-friendly ethical-hacking kali penetration-testing penetration-testing-framework pentest-tool pentesting python3 toolkit tools

Last synced: 28 Oct 2024

https://github.com/INotGreen/XiebroC2

渗透测试C2、支持Lua插件扩展、域前置/CDN上线、自定义profile、前置sRDI、文件管理、进程管理、内存加载、截图、反向代理、分组管理

c2 pentest-tool

Last synced: 05 Nov 2024

https://github.com/TryCatchHCF/DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

automation blue-team blue-teams hacking hacking-tool hacking-tools infosec pentest pentest-tool pentest-tools pentesting red-team red-teams security security-tools

Last synced: 30 Oct 2024

https://github.com/quentinhardy/msdat

MSDAT: Microsoft SQL Database Attacking Tool

mssql-database pentest pentest-tool privilege-escalation

Last synced: 01 Jan 2025