Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Hacking

Hacking refers to the practice of gaining unauthorized access to data in a system or computer. This topic encompasses various forms of hacking, including black-hat and grey-hat hacking, which involve malicious or non-malicious intent. It explores the tools and techniques used by hackers, the motivations behind hacking, and the measures organizations can take to protect themselves.

https://github.com/m4ll0k/Atlas

Quick SQLMap Tamper Suggester

hacking injection sql sqlmap tool

Last synced: 03 Aug 2024

https://github.com/mytechnotalent/Hacking-Windows

A FREE Windows C development course where we will learn the Win32API and reverse engineer each step utilizing IDA Free in both an x86 and x64 environment.

assembler assembly blue-team cplusplus cpp cyber cyber-threat-intelligence cybersecurity hack hacking ida ida-pro idapro microsoft-windows reverse-engineering training training-material training-materials win32api windows

Last synced: 31 Jul 2024

https://github.com/0xHJK/dumpall

一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出

bug-bounty dumpall githack hacking pentesting python3 scanner security spider svn tools

Last synced: 01 Aug 2024

https://github.com/Raikia/FiercePhish

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.

email hacking netsec phishing security

Last synced: 01 Aug 2024

https://github.com/HashPals/Search-That-Hash

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

cracks cybersecurity hacking hacking-tool hash hashcat infosec john tool

Last synced: 01 Aug 2024

https://github.com/m3n0sd0n4ld/GooFuzz

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced Google searches (Google Dorking).

bash-script bugbounty discovery fuzzing google-dorks hacking information-disclosure infosec osint penetration-testing pentesting recon reconnaissance red-team subdomain

Last synced: 01 Aug 2024

https://github.com/k8gege/k8cscan

K8Ladon大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用,程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本,支持Cobalt Strike联动

cobalt-strike crack exploit ftp getshell hacking ipc mssql mysql netscan oracle password pentest poc portscan scanner security smb subdomain wmi

Last synced: 01 Aug 2024

https://github.com/khast3x/Redcloud

Automated Red Team Infrastructure deployement using Docker

bugbounty docker hacking kali metasploit offensive pentest traefik

Last synced: 01 Aug 2024

https://github.com/khast3x/redcloud

Automated Red Team Infrastructure deployement using Docker

bugbounty docker hacking kali metasploit offensive pentest traefik

Last synced: 01 Aug 2024

https://github.com/codingo/Interlace

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

bugbounty cidr-notation enumeration hacking hacking-tool linux multithreading oscp oscp-tools penetration-testing security security-tools service-enumeration thread

Last synced: 01 Aug 2024

https://github.com/codingo/vhostscan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

bugbounty ctf-tools discovery-service hacking hacking-tool hackthebox offensive-security oscp penetration-test penetration-testing reverse-lookups scanner security security-audit security-tools vhost vhosts virtual-host virtual-hosts web-application-security

Last synced: 01 Aug 2024

https://github.com/cybersecsi/houdini

Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.

cheatsheet docker docker-images hacking pentesting tools webapp

Last synced: 01 Aug 2024

https://github.com/initstring/linkedin2username

OSINT Tool: Generate username lists for companies on LinkedIn

hacking osint penetration-testing pentesting

Last synced: 31 Jul 2024

https://github.com/codingo/interlace

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

bugbounty cidr-notation enumeration hacking hacking-tool linux multithreading oscp oscp-tools penetration-testing security security-tools service-enumeration thread

Last synced: 01 Aug 2024

https://github.com/PabloLec/RecoverPy

Interactively find and recover deleted or :point_right: overwritten :point_left: files from your terminal

cli console cybersecurity data data-recovery files forensics hacking linux macos pentesting python python3 recovery search search-interface terminal textual tool tui

Last synced: 31 Jul 2024

https://github.com/initstring/passphrase-wordlist

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

hacking infosec password-cracking penetration-testing pentesting wordlist

Last synced: 01 Aug 2024

https://github.com/brannondorsey/naive-hashcat

Crack password hashes without the fuss :cat2:

hacking hash-cracking hashcat password-cracking

Last synced: 31 Jul 2024

https://github.com/codingo/VHostScan

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

bugbounty ctf-tools discovery-service hacking hacking-tool hackthebox offensive-security oscp penetration-test penetration-testing reverse-lookups scanner security security-audit security-tools vhost vhosts virtual-host virtual-hosts web-application-security

Last synced: 01 Aug 2024

https://github.com/hahwul/XSpear

🔱 Powerfull XSS Scanning and Parameter analysis tool&gem

bugbounty bugbountytips gem hacking library pentest ruby scanner scanning-xss selenium tool webhacking xss

Last synced: 01 Aug 2024

https://github.com/screetsec/Dracnmap

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

backbox hacker hacking information-gathering kalilinux linux nmap nmap-command parrot scanning tool toolshacking

Last synced: 01 Aug 2024

https://github.com/Screetsec/Dracnmap

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

backbox hacker hacking information-gathering kalilinux linux nmap nmap-command parrot scanning tool toolshacking

Last synced: 31 Jul 2024

https://github.com/3ndg4me/autoblue-ms17-010

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

eternal-blue-exploits hacking hacktoberfest python security

Last synced: 01 Aug 2024

https://github.com/screetsec/brutal

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

arduino arduino-library badusb hacker hacking payload penetration penetration-testing powershell-attack rubberducky teensy usb

Last synced: 01 Aug 2024

https://github.com/Screetsec/Brutal

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

arduino arduino-library badusb hacker hacking payload penetration penetration-testing powershell-attack rubberducky teensy usb

Last synced: 31 Jul 2024

https://github.com/joaoviictorti/RustRedOps

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

hacking malware malware-development offensive-security redteam rust windows

Last synced: 01 Aug 2024

https://github.com/MegaManSec/SSH-Snake

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.

bash cybersecurity exploitation exploitation-tool hacking hacking-tools pentesting post-exploitation redteam scanner security security-tools shell ssh ssh-hacking vulnerability-scanner worm

Last synced: 01 Aug 2024

https://github.com/BiZken/PhishMailer

Generate Professional Phishing Emails Fast And Easy

hacking phishing phishing-attacks social-engineering

Last synced: 04 Aug 2024

https://github.com/viralmaniar/powershell-rat

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

backdoor fud hacking hacking-tool penetration-testing pentesting powershell rat redteaming remoteaccess trojan trojan-rat

Last synced: 01 Aug 2024

https://github.com/Athena-OS/athena

Athena OS is a Arch/Nix-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!

archlinux cybersecurity hacking learning linux os payload pentesting security security-tools

Last synced: 30 Jul 2024

https://github.com/Viralmaniar/Powershell-RAT

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

backdoor fud hacking hacking-tool penetration-testing pentesting powershell rat redteaming remoteaccess trojan trojan-rat

Last synced: 30 Jul 2024

https://github.com/MrTuxx/SocialPwned

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB or Dehashed and obtain Google account information via GHunt.

dehashed ghunt hacking haveibeenpwned instagram instagram-api linkedin-api osint pentesting-tools pwndb social-engineering twint

Last synced: 17 Aug 2024

https://github.com/averagesecurityguy/scripts

Scripts I use during pentest engagements.

hacking penetration-testing pentests python tools

Last synced: 01 Aug 2024

https://github.com/yassineaboukir/sublert

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

bug-bounty certificate-transparency certificate-transparency-logs hacking information-gathering monitoring-tool penetration-testing pentest python reconnaissance security sublert

Last synced: 01 Aug 2024

https://github.com/TryCatchHCF/DumpsterFire

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

automation blue-team blue-teams hacking hacking-tool hacking-tools infosec pentest pentest-tool pentest-tools pentesting red-team red-teams security security-tools

Last synced: 31 Jul 2024

https://github.com/1n3/privesc

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

bugbounty exploits hacking linux mysql pentesting privesc sql windows

Last synced: 03 Aug 2024

https://github.com/1N3/PrivEsc

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

bugbounty exploits hacking linux mysql pentesting privesc sql windows

Last synced: 01 Aug 2024

https://github.com/SimplySecurity/SimplyEmail

Email recon made fast and easy, with a framework to build on

email-recon emails hacking kali recon

Last synced: 01 Aug 2024

https://github.com/adi0x90/attifyos

Attify OS - Distro for pentesting IoT devices

embedded exploitation hacking hardware internet-of-things iot iot-pentesting security

Last synced: 04 Aug 2024

https://github.com/i3visio/osrframework

OSRFramework, the Open Sources Research Framework is a AGPLv3+ project by i3visio focused on providing API and tools to perform more accurate online researches.

gnu-agplv3 hacking internet investigations osint osrframework pypi python3 social-networks user-management

Last synced: 31 Jul 2024

https://github.com/osintbrazuca/osint-brazuca-regex

Repositório criado com intuito de reunir expressões regulares dentro do contexto Brasil

brasil brazil hacking osint regex threat-hunting threat-intelligence

Last synced: 04 Aug 2024

https://github.com/Th30neAnd0nly/AIRAVAT

A multifunctional Android RAT with GUI based Web Panel without port forwarding.

advanced airavat android android-hacking android-malware android-rat botnet hack hacking java th30neand0nly

Last synced: 01 Aug 2024

https://github.com/alibaba/java-dns-cache-manipulator

🌏 A tiny 0-dependency thread-safe Java™ lib for setting/viewing dns programmatically without touching host file, make unit/integration testing portable; and a tiny tool for setting/viewing dns of running JVM process.

dns dns-cache dns-cache-manipulator domain-name hacking hacking-code integration-testing java jvm testing threadsafe unit-testing

Last synced: 31 Jul 2024

https://github.com/erfg12/memory.dll

C# Hacking library for making PC game trainers.

hacking memory processes

Last synced: 01 Aug 2024

https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner

Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).

bugbounty hacking hacking-tool penetration-testing penetration-testing-tools pentesting scanner security security-audit security-scanner security-tools vulnerability-scanners web-cache

Last synced: 01 Aug 2024

https://github.com/chvancooten/BugBountyScanner

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

bug-bounty-reconnaissance bugbounty docker-image hacking hacktoberfest reconnaissance

Last synced: 01 Aug 2024

https://github.com/grafov/hulk

HULK DoS tool ported to Go with some additional features.

dos golang hacking http python security utilities web

Last synced: 31 Jul 2024

https://github.com/dsopas/MindAPI

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

api-security hacking methodology mindapi mindmap

Last synced: 04 Aug 2024

https://github.com/Snifer/security-cheatsheets

A collection of cheatsheets for various infosec tools and topics.

cheatsheet hacking linux pentesting

Last synced: 15 Aug 2024

https://github.com/snifer/security-cheatsheets

A collection of cheatsheets for various infosec tools and topics.

cheatsheet hacking linux pentesting

Last synced: 01 Aug 2024

https://github.com/RhinoSecurityLabs/IPRotate_Burp_Extension

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

aws-apigateway burpsuite hacking penetration-testing webapp

Last synced: 02 Aug 2024

https://github.com/pedrib/PoC

Advisories, proof of concept files and exploits that have been made public by @pedrib.

advisories exploits hacking metasploit vulnerabilities

Last synced: 04 Aug 2024

https://github.com/rhinosecuritylabs/iprotate_burp_extension

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

aws-apigateway burpsuite hacking penetration-testing webapp

Last synced: 01 Aug 2024

https://github.com/AHXR/ghost

:ghost: RAT (Remote Access Trojan) - Silent Botnet - Full Remote Command-Line Access - Download & Execute Programs - Spread Virus' & Malware

backdoor botnet hacking malware rat remote remote-access remote-access-tool remote-access-trojan trojan windows

Last synced: 31 Jul 2024

https://github.com/kennbroorg/iKy

OSINT Project. Collect information from a mail. Gather. Profile. Timeline.

email github gitlab hacking iky infosec intelligence keybase leaks linkedin mastodon osint privacy profile recon reddit spotify timeline twitch twitter

Last synced: 31 Jul 2024

https://github.com/Zarcolio/sitedorks

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term (dork) with a default set of websites, bug bounty programs or custom collection.

baidu bing bugbounty bugcrowd duckduckgo google google-dorks googledork hackerone hacking infosec intigriti osint python3 recon reconnaissance search search-engines yahoo yandex

Last synced: 04 Aug 2024

https://github.com/r3dy/capsulecorp-pentest

Vagrant VirtualBox environment for conducting an internal network penetration test

ansible ethical-hacking hacking penetration-testing pentest pentesting vagrant

Last synced: 02 Aug 2024

https://github.com/ScRiPt1337/Teardroid-phprat

:india: :robot: It's easy to use android botnet work without port forwarding, vps and android studio

android-botnet android-exploitation android-malware android-pentesting android-rat bot botnet hacking hacking-tool keylogger post-exploitation rat

Last synced: 04 Aug 2024

https://github.com/bl4de/security-tools

My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.

bug-bounties bug-bounty bugbounty ctf ctf-tools hacking infosec itsecurity pentesting python scanner security-testing security-tools static-analysis webappsec

Last synced: 01 Aug 2024

https://github.com/indianajson/can-i-take-over-dns

"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones

bugbounty bugbountytips dangling-dns dns dns-hijacking dns-takeover domain-takeover hacking hacking-tool infosec nameservers subdomain-takeover takeover-subdomain

Last synced: 01 Aug 2024

https://github.com/Ignitetechnologies/CTF-Difficulty

This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.

cheatsheet ctf ctf-challenges ctf-difficulty ctf-players ctf-writeups hack hacking oscp oscp-journey oscp-prep vulnhub

Last synced: 31 Jul 2024

https://github.com/hahwul/jwt-hack

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

bugbounty cracking hacking hacktoberfest jwt payload-generator security testing-tools tool

Last synced: 01 Aug 2024

https://github.com/sundaysec/android-exploits

A collection of android Exploits and Hacks

android android-architecture dos exploit exploits hacking

Last synced: 03 Aug 2024

https://github.com/aaaguirrep/offensive-docker

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

bug-bounty bugbounty ctf-tools hacking hacking-tools htb pentest pentesting pentesting-tools

Last synced: 30 Jul 2024

https://github.com/aaaguirrep/pentest

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

bug-bounty bugbounty ctf-tools hacking hacking-tools htb pentest pentesting pentesting-tools

Last synced: 03 Aug 2024

https://github.com/1N3/ReverseAPK

Quickly analyze and reverse engineer Android packages

analyze android apk decompile hacking java linux mobile pentest pentesting reverse-engineering smali

Last synced: 31 Jul 2024

https://github.com/x1mdev/reconpi

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

docker hacking hacking-tool hacktoberfest nuclei raspberry-pi recon recon-pi shell

Last synced: 01 Aug 2024

Hacking Awesome Lists
the-book-of-secret-knowledge 74 Awesome-Hacking 84 Awesome-Hacking-Resources 261 awesome-hacking 192 movies-for-hackers 126 awesome-hacker-search-engines 469 osint_stuff_tool_collection 1,387 awesome-sec-talks 264 WebHackersWeapons 404 awesome-vehicle-security 214 awesome-mobile-security 246 Awesome-Cellular-Hacking 69 awesome-ethical-hacking-resources 80 awesome-privilege-escalation 188 awesome-hacking-lists 10,901 awesome-vulnerable-apps 88 Offensive-OSINT-Tools 130 MobileHackersWeapons 70 awesome-bbht 80 Awesome-hacking-tools 34 awesome-rtc-hacking 105 awesome-ctf-resources 239 guia-ackercode 226 awesome-cybersec 300 fucking-the-book-of-secret-knowledge 35 awesome_gpt_super_prompting 90 Pentest-Bookmarkz 92 fucking-Awesome-Hacking 81 awesome-security-feed 283 awesome-asus-tinker-board 41 All-In-One-CyberSecurity-Resources 125 Python-Security-Tool-Database 40 awesome-interests 66 fucking-awesome-web-security 405 awesome-wrgms-kids 191 Hacking-Awesome 68 the-book-of-secret-knowledge 77
Hacking Categories
Python 3,073 Others 1,577 Go 1,175 [](#table-of-contents) Table of contents 1,119 Java 863 Shell 695 JavaScript 638 Uncategorized 614 C 517 Weapons 451 C# # 437 C++ 392 Table of Contents 308 HTML 260 PowerShell 234 PHP 229 Android 223 TypeScript 171 Miscellaneous 164 :trident:  The Book of Secret Knowledge (Chapters) 151