Ecosyste.ms: Repos
An open API service providing repository metadata for many open source software ecosystems.
GitHub topics: pentest-tools
zhzyker/dismap
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
Language: Go - Size: 420 KB - Last synced: about 17 hours ago - Pushed: 4 months ago - Stars: 1,922 - Forks: 267
Pennyw0rth/NetExec
The Network Execution Tool
Language: Python - Size: 12.4 MB - Last synced: 17 days ago - Pushed: 17 days ago - Stars: 2,181 - Forks: 225
1N3/Sn1per
Attack Surface Management Platform
Language: Shell - Size: 43.1 MB - Last synced: 17 days ago - Pushed: 17 days ago - Stars: 7,585 - Forks: 1,779
The-Viper-One/Pentest-Everything
A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
Size: 225 MB - Last synced: 20 days ago - Pushed: 20 days ago - Stars: 442 - Forks: 93
dhondta/dronesploit
Drone pentesting framework console
Language: Python - Size: 4.67 MB - Last synced: 27 days ago - Pushed: 7 months ago - Stars: 1,354 - Forks: 234
noraj/haiti
:key: Hash type identifier (CLI & lib)
Language: Ruby - Size: 934 KB - Last synced: about 1 month ago - Pushed: about 1 month ago - Stars: 705 - Forks: 51
TryCatchHCF/DumpsterFire
"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
Language: Python - Size: 30 MB - Last synced: 26 days ago - Pushed: about 4 years ago - Stars: 967 - Forks: 148
A-poc/RedTeam-Tools
Tools and Techniques for Red Team / Penetration Testing
Size: 213 KB - Last synced: about 1 month ago - Pushed: 10 months ago - Stars: 5,169 - Forks: 696
sinfulz/JustTryHarder
JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)
Language: Python - Size: 181 KB - Last synced: about 1 month ago - Pushed: over 1 year ago - Stars: 776 - Forks: 102
sleventyeleven/linuxprivchecker
linuxprivchecker.py -- a Linux Privilege Escalation Check Script
Language: Python - Size: 44.9 KB - Last synced: about 1 month ago - Pushed: over 2 years ago - Stars: 1,479 - Forks: 491
InfosecHouse/InfosecHouse
Tools & Resources for Cyber Security Operations
Size: 100 MB - Last synced: about 1 month ago - Pushed: 4 months ago - Stars: 175 - Forks: 46
RossGeerlings/webstor
WebStor efficiently enumerates all websites across your organization’s networks and those in your DNS records - including cloud-hosted servers via zone transfer data - stores their responses, and lets you query for known web technologies, including those with zero-day vulnerabilities.
Language: Python - Size: 199 KB - Last synced: 3 days ago - Pushed: 2 months ago - Stars: 150 - Forks: 19
Ixve/Red-Team-Tools
Repo containing cracked red teaming tools.
Language: Batchfile - Size: 52.7 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 49 - Forks: 11
SrKocmoc/ZerasusZ
Language: Python - Size: 130 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 1 - Forks: 1
Leo4j/Amnesiac
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
Language: PowerShell - Size: 2.87 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 265 - Forks: 46
ra1nb0rn/search_vulns
Search for known vulnerabilities in software using software titles or a CPE 2.3 string
Language: Python - Size: 2.33 MB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 10 - Forks: 3
cddmp/enum4linux-ng
A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.
Language: Python - Size: 568 KB - Last synced: about 2 months ago - Pushed: about 2 months ago - Stars: 1,019 - Forks: 116
BishopFox/GadgetProbe
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
Language: Java - Size: 1.97 MB - Last synced: about 2 months ago - Pushed: over 3 years ago - Stars: 569 - Forks: 98
Navinscribed/BruteBot
A Python-based password brute-forcer that leverages the webbot library
Language: Python - Size: 23.4 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 20 - Forks: 5
lucthienphong1120/AIO-Pentesting
All in one Pentest methodologies - Tools and commands | Where compiled all common materials for pentester
Size: 137 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 18 - Forks: 8
eikendev/hackenv
Manage and access your Kali Linux or Parrot Security VM from the terminal (SSH support + file sharing, especially convenient during CTFs, Hack The Box, etc.) :rocket::wrench:
Language: Go - Size: 226 KB - Last synced: 22 days ago - Pushed: 6 months ago - Stars: 17 - Forks: 4
haxxinen/dockero-infosec
Docker recipes for infosec tools. :lock: :whale: :man_cook:
Language: Shell - Size: 198 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 1 - Forks: 0
YurinDoctrine/pentest-base-popular
Misc tools install on Arch Linux , Ubuntu or Debian and Fedora
Language: Shell - Size: 128 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 12 - Forks: 3
aufzayed/HydraRecon
All In One, Fast, Easy Recon Tool
Language: Python - Size: 40 KB - Last synced: 3 months ago - Pushed: almost 2 years ago - Stars: 68 - Forks: 12
txuswashere/Web-Pentesting
Web Pentesting
Size: 174 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 1 - Forks: 0
txuswashere/Pentesting-Linux
Pentesting Linux
Size: 31.3 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 2 - Forks: 0
txuswashere/Pentesting-Windows
Pentesting Windows
Size: 152 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 1 - Forks: 0
Knowledge-Wisdom-Understanding/recon
Enumerate a target Based off of Nmap Results
Language: Python - Size: 17.6 MB - Last synced: 28 days ago - Pushed: 7 months ago - Stars: 77 - Forks: 23
Resxarcher/subpassive
subpassive is my bash script to enumerate subdomains.
Language: Shell - Size: 2.93 KB - Last synced: 3 months ago - Pushed: 3 months ago - Stars: 0 - Forks: 0
Warflop/cloudbunny
CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.
Language: Python - Size: 26.4 KB - Last synced: 2 months ago - Pushed: 4 months ago - Stars: 346 - Forks: 63
Amouxi/SuperHelper
Helper script for checking SUID/SUDO permissions against GTFOBin data.
Language: Python - Size: 11.7 KB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 4 - Forks: 0
Ezzer17/backconnectd
Backconnect daemon capable of accepting and holding multiple connections
Language: Go - Size: 76.2 KB - Last synced: 4 months ago - Pushed: about 1 year ago - Stars: 3 - Forks: 0
rastating/pga4decrypt 📦
A tool for recovering server credentials from a pgadmin4 database
Language: Python - Size: 53.7 KB - Last synced: about 2 months ago - Pushed: over 2 years ago - Stars: 20 - Forks: 10
helich0pper/Karkinos
Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
Language: PHP - Size: 60.1 MB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 386 - Forks: 87
xchopath/pathprober 📦
Probe and discover HTTP pathname using brute-force methodology and filtered by specific word or 2 words at once
Language: Python - Size: 104 KB - Last synced: 3 months ago - Pushed: almost 3 years ago - Stars: 47 - Forks: 7
Viralmaniar/PeekABoo
PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.
Language: Python - Size: 21.5 KB - Last synced: 3 months ago - Pushed: about 5 years ago - Stars: 129 - Forks: 30
TryCatchHCF/Cloakify
CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection
Language: Python - Size: 17.9 MB - Last synced: 5 months ago - Pushed: over 3 years ago - Stars: 1,464 - Forks: 235
itm4n/Pentest-Tools
Some random tools I use for penetration testing
Language: HTML - Size: 1.08 MB - Last synced: 5 months ago - Pushed: 5 months ago - Stars: 79 - Forks: 31
Z3ratu1/HackBrowserDataManual
Get password/cookie/history from browser and use devtools protocol to bypass edr monitoring
Language: Go - Size: 22.5 KB - Last synced: 4 months ago - Pushed: 4 months ago - Stars: 40 - Forks: 7
franckferman/Memento
🔄 Memento: RLO Extension Spoofing.
Language: PowerShell - Size: 208 KB - Last synced: 6 months ago - Pushed: 6 months ago - Stars: 1 - Forks: 0
postrequest/cbuster
Web server directory and file fuzzer
Language: C - Size: 1.35 MB - Last synced: 8 months ago - Pushed: almost 5 years ago - Stars: 4 - Forks: 1
Anon-Exploiter/SUID3NUM
A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)
Language: Python - Size: 143 KB - Last synced: 8 months ago - Pushed: almost 3 years ago - Stars: 570 - Forks: 129
codingo/crithit
Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
Language: Makefile - Size: 93.8 MB - Last synced: 7 months ago - Pushed: about 4 years ago - Stars: 200 - Forks: 47
r00tdaemon/arsenal
Tools for bug hunting in a container
Language: Shell - Size: 27.3 KB - Last synced: 10 months ago - Pushed: 10 months ago - Stars: 20 - Forks: 6
gildasio/report-template
Report template using LaTeX
Language: TeX - Size: 3.01 MB - Last synced: 12 months ago - Pushed: 12 months ago - Stars: 0 - Forks: 0
w3security/Bruttrack
A list of useful payloads and bypasses for Web Application Security. Feel free to improve with your payloads and techniques ! I :heart: pull requests :)
Language: PHP - Size: 15.5 MB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 5 - Forks: 2
infoengine1337/UhuruOS Fork of FascodeNet/alterlinux
Uhuru OS - a Distro focused on enhancement several types of security
Language: C - Size: 140 MB - Last synced: 12 months ago - Pushed: 12 months ago - Stars: 46 - Forks: 3
mentesan/webtaz
Web pentest kickstarter
Language: Shell - Size: 6.29 MB - Last synced: about 1 year ago - Pushed: about 1 year ago - Stars: 0 - Forks: 0
Tomas-Ortiz/googlehackingbydomain
Automation of advanced Google queries to locate potentially sensitive information and security vulnerabilities in a domain.
Language: Python - Size: 25.4 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 5 - Forks: 0
thesubtlety/splunkon
Pull back interesting recon info from the Splunk Management REST interface, useful for pentest recon
Language: Go - Size: 21.5 KB - Last synced: 26 days ago - Pushed: 9 months ago - Stars: 1 - Forks: 0
Xnuvers007/okadminfinder4
Okadminfinder rewrite by Xnuvers007
Language: Python - Size: 263 KB - Last synced: about 1 year ago - Pushed: about 3 years ago - Stars: 15 - Forks: 5
Ferdibrgl/pentest_compilation-master
PENTEST complate master
Language: XSLT - Size: 239 KB - Last synced: about 2 months ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0
pwnlog/SharpSwitch
Switch to another user within the same console
Language: C# - Size: 43.9 KB - Last synced: about 1 year ago - Pushed: over 1 year ago - Stars: 0 - Forks: 0
Kr0ff/PenDock
A script to build either Blackarch, Kali linux or ParrotOS Docker container which has the ability to provide desktop environment access either via X2Go or VNC
Language: PowerShell - Size: 3.33 MB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 31 - Forks: 7
atthacks/RunAsUser
This tool allows you to run programs as another user from the Windows command line. Example usage is if you have a low privilege shell and find credentials for another user. You can then execute a program as that other user.
Language: C# - Size: 244 KB - Last synced: about 1 year ago - Pushed: about 2 years ago - Stars: 17 - Forks: 2
aqhmal/Simple-PHP-Web-Backdoor
A simple PHP web backdoor allows you to retrieve directory/file contents and upload file(s) from the local machine or remote URL.
Language: PHP - Size: 1.95 KB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 15 - Forks: 5
sergioab7/magicShell
Script that allows you to get your reverse quickly.
Language: Python - Size: 4.88 KB - Last synced: 11 months ago - Pushed: almost 4 years ago - Stars: 7 - Forks: 0
jopcode/wordpress_vulnerable_plugins
A simple script for extract all vulnerable plugins form the wordpress site.
Language: Python - Size: 15.6 KB - Last synced: 5 months ago - Pushed: over 3 years ago - Stars: 2 - Forks: 0
Proyek-Sangkuriang/sangkuriang
Frontend for project sangkuriang
Language: HTML - Size: 25.8 MB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 0 - Forks: 3
mattfoster/sslscan-docker
sslscan inside docker
Language: Dockerfile - Size: 0 Bytes - Last synced: about 1 year ago - Pushed: about 4 years ago - Stars: 0 - Forks: 1
scapecom/onevault-parsers
Current parsers to help convert some popular pentest tools to CSV onevault file formats.
Language: Python - Size: 3.91 KB - Last synced: 10 months ago - Pushed: over 4 years ago - Stars: 0 - Forks: 1