GitHub topics: web-penetration-testing
ivan-sincek/auto-recon
Not another auto-reconnaissance framework.
Language: Python - Size: 93.8 KB - Last synced at: 1 day ago - Pushed at: 1 day ago - Stars: 0 - Forks: 0
ivan-sincek/penetration-testing-cheat-sheet
Work in progress...
Language: PHP - Size: 1.57 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 719 - Forks: 146
strikoder/kalipen
A one-command Kali setup for automated, up-to-date pentesting tools.
Language: Shell - Size: 65.4 KB - Last synced at: 3 days ago - Pushed at: 4 days ago - Stars: 0 - Forks: 0
pentagridsec/PentagridScanController
Improve automated and semi-automated active scanning in Burp Pro
Language: Kotlin - Size: 5.17 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 61 - Forks: 4
0xInfection/TIDoS-Framework
The Offensive Manual Web Application Penetration Testing Framework.
Language: Python - Size: 22.7 MB - Last synced at: 5 days ago - Pushed at: about 2 years ago - Stars: 1,825 - Forks: 392
ivan-sincek/chad
Search Google Dorks like Chad. / Broken link hijacking tool.
Language: Python - Size: 1020 KB - Last synced at: 6 days ago - Pushed at: 7 days ago - Stars: 28 - Forks: 5
ivan-sincek/php-reverse-shell
PHP shells that work on Linux OS, macOS, and Windows OS.
Language: PHP - Size: 462 KB - Last synced at: 8 days ago - Pushed at: over 1 year ago - Stars: 492 - Forks: 152
D4Vinci/Clickjacking-Tester
A python script designed to check if the website if vulnerable of clickjacking and create a poc
Language: Python - Size: 36.1 KB - Last synced at: 5 days ago - Pushed at: almost 5 years ago - Stars: 148 - Forks: 63
t3l3machus/toxssin
An XSS exploitation command-line interface and payload generator.
Language: Python - Size: 682 KB - Last synced at: 11 days ago - Pushed at: 5 months ago - Stars: 1,372 - Forks: 192
ivan-sincek/nagooglesearch
Not another Google searching tool.
Language: Python - Size: 9.77 KB - Last synced at: 19 days ago - Pushed at: 3 months ago - Stars: 9 - Forks: 0
thewhiteh4t/FinalRecon
All In One Web Recon
Language: Python - Size: 360 KB - Last synced at: 19 days ago - Pushed at: about 1 month ago - Stars: 2,447 - Forks: 450
whoamikiddie/vulnx-base
Vulnx is a powerful vulnerability scanning and reconnaissance tool built in Golang, designed for ethical hackers, security researchers, and penetration testers. It automates the process of collecting intelligence on targets and scanning for common vulnerabilities, combining speed, accuracy, and ease of use.
Language: HTML - Size: 267 MB - Last synced at: 24 days ago - Pushed at: 24 days ago - Stars: 1 - Forks: 0
L0WK3Y-IAAN/Hunting-With-L0WK3Y
This repository documents my path from cybersecurity enthusiast to a skilled bug bounty hunter. Here, I share the tools, resources, techniques, and real-world insights I've gathered along the way, aimed at uncovering vulnerabilities and improving application security.
Language: Python - Size: 27.2 MB - Last synced at: 7 days ago - Pushed at: about 1 month ago - Stars: 4 - Forks: 1
L0WK3Y-IAAN/PortSwigger-Academy-Tracker
This script dynamically tracks your PortSwigger Academy progress and generates a markdown table for you.
Language: Python - Size: 27.3 KB - Last synced at: 7 days ago - Pushed at: about 1 month ago - Stars: 0 - Forks: 1
whxitte/white-dav
This is a website penetration testing tool for testing webdav server vulnerabilities.
Language: Python - Size: 64.5 KB - Last synced at: about 1 month ago - Pushed at: 6 months ago - Stars: 37 - Forks: 7
ivan-sincek/forbidden
Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.
Language: Python - Size: 1000 KB - Last synced at: 17 days ago - Pushed at: 3 months ago - Stars: 242 - Forks: 43
sil3ntH4ck3r/WebVulnLab
Herramienta donde puedes practicar las vulnerabilidades web mΓ‘s conocidas. Email: [email protected]
Language: PHP - Size: 17.7 MB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 61 - Forks: 8
aaBadri/pentest
Getting started with web penetration test.
Language: PHP - Size: 177 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0
ivan-sincek/java-reverse-tcp
JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.
Language: Java - Size: 45.9 KB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 60 - Forks: 8
ivan-sincek/file-scraper
Scrape files for sensitive information, and generate an interactive HTML report. Based on Rabin2.
Language: Python - Size: 907 KB - Last synced at: 21 days ago - Pushed at: 3 months ago - Stars: 13 - Forks: 2
Hunterdii/tryhackme-free-rooms
Hello, aspiring hackers! π΅οΈββοΈ Hereβs a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and Iβve organized them by topic to help you dive in right away. π οΈ
Size: 40 KB - Last synced at: 2 months ago - Pushed at: 5 months ago - Stars: 62 - Forks: 16
krishealty/knockknock
A Simple Tool to gather information from any website, domain, sub-domain, DNS, links by enumeration with simple commands.
Language: Go - Size: 1.2 MB - Last synced at: 2 days ago - Pushed at: about 1 year ago - Stars: 5 - Forks: 1
ivan-sincek/bot-safe-agents
A library for fetching a list of bot-safe user agents.
Language: Python - Size: 3.91 KB - Last synced at: 8 days ago - Pushed at: 7 months ago - Stars: 4 - Forks: 0
hackerhalt0fficial/Tryhackme-Certificate
Showcasing cybersecurity projects, tools, and research in penetration testing, OSINT, and exploit development, contributing to the cybersecurity community. π
Size: 168 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0
ivan-sincek/scrapy-scraper
Web crawler and scraper based on Scrapy and Playwright's headless browser.
Language: Python - Size: 86.9 KB - Last synced at: about 2 months ago - Pushed at: 3 months ago - Stars: 13 - Forks: 3
zAbuQasem/MyNotes
My notes from courses,books ..etc
Size: 67.6 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 44 - Forks: 5
hunThubSpace/SubScope
SubScope is a Python-based command-line tool that helps you manage domains and subdomains in workspaces using an SQLite database.
Language: Python - Size: 366 KB - Last synced at: 9 days ago - Pushed at: 4 months ago - Stars: 1 - Forks: 1
hunThubSpace/TorWatch
TorWatch is a powerful bash script for monitoring the availability of websites through the Tor network. It manages IP address rotation, blocks IP addresses if the site is inaccessible, and logs activities for tracking events.
Language: Shell - Size: 16.6 KB - Last synced at: 2 months ago - Pushed at: 4 months ago - Stars: 1 - Forks: 0
t3l3machus/OWASP-Testing-Guide-Checklist
OWASP based Web Application Security Testing Checklist
Size: 222 KB - Last synced at: 4 months ago - Pushed at: 11 months ago - Stars: 69 - Forks: 31
ivan-sincek/amounts
Generate a wordlist to fuzz amounts or any other numerical values.
Language: Python - Size: 12.7 KB - Last synced at: 16 days ago - Pushed at: 7 months ago - Stars: 9 - Forks: 3
AngixBlack/RedirXploit
tool designed to scan URLs for open redirect vulnerabilities
Language: Python - Size: 112 KB - Last synced at: 5 months ago - Pushed at: 5 months ago - Stars: 0 - Forks: 0
HackfutSec/ProxGrab
ProxGrab is a tool that allows you to fetch public HTTP, SOCKS4, and SOCKS5 proxies from an API, verify their validity, and save them to a file for later use. This project is primarily designed for security researchers and online anonymity professionals
Language: Python - Size: 11.7 KB - Last synced at: 8 days ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0
GraveSIN/http-probe
Probe URL(s) for status codes and other info
Language: Go - Size: 31.3 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 0 - Forks: 0
fxrhan/Web-Recon-Automation
A bash script to automate the necessary Reconnaissance task for websites.
Language: Shell - Size: 13.7 KB - Last synced at: 6 months ago - Pushed at: 6 months ago - Stars: 16 - Forks: 2
ivan-sincek/xss-catcher
Simple API for storing all incoming XSS requests and various XSS templates.
Language: HTML - Size: 146 KB - Last synced at: 2 months ago - Pushed at: 11 months ago - Stars: 45 - Forks: 8
ivan-sincek/jwt-bf π¦
Brute force a JWT token. Script uses multithreading.
Language: Python - Size: 2.93 KB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 9 - Forks: 1
ivan-sincek/dnsrecon-chunked π¦
Brute force subdomains in multiple smaller iterations. Based on DNSRecon.
Language: Shell - Size: 4.88 KB - Last synced at: 3 months ago - Pushed at: about 2 years ago - Stars: 7 - Forks: 1
ivan-sincek/metagoofeel π¦
Web crawler and downloader based on GNU Wget.
Language: Shell - Size: 3.91 KB - Last synced at: 3 months ago - Pushed at: about 2 years ago - Stars: 12 - Forks: 4
ivan-sincek/css-dictionary-attack π¦
Example on how to steal information with CSS from web forms.
Language: CSS - Size: 103 KB - Last synced at: 4 months ago - Pushed at: almost 4 years ago - Stars: 2 - Forks: 3
AngixBlack/Corscan
Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts
Language: Python - Size: 640 KB - Last synced at: 9 months ago - Pushed at: 9 months ago - Stars: 52 - Forks: 12
c0brabaghdad1/cve_Directory
This script take a URL or list of subdomain and the required DIR for specific CVE and give the response code for each url
Language: Perl - Size: 1000 Bytes - Last synced at: 5 days ago - Pushed at: about 4 years ago - Stars: 4 - Forks: 2
kmarkela/wiggumizer
Burp History analyser and Fuzzer
Language: Go - Size: 79 MB - Last synced at: 2 months ago - Pushed at: about 1 year ago - Stars: 1 - Forks: 0
shadforth/pentesterlab-bootcamp
My notes on PentesterLab's Bootcamp series π΅οΈ
Language: Python - Size: 25.4 KB - Last synced at: 6 months ago - Pushed at: over 1 year ago - Stars: 43 - Forks: 23
rahardian-dwi-saputra/webgoat
Praktek eksploitasi celah keamanan OWASP top 10 dengan WebGoat
Size: 20.3 MB - Last synced at: 12 months ago - Pushed at: 12 months ago - Stars: 0 - Forks: 0
kiro6/writeups
Language: Python - Size: 1.78 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 1
bemnet16/cyber-path
This repository is for cyber-security learning path. which contains notes, walk-through for CTF's from different platforms
Size: 1.99 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 1 - Forks: 0
TorhamDev/Death-engine
A powerful recon tool
Language: Python - Size: 271 KB - Last synced at: about 2 months ago - Pushed at: almost 3 years ago - Stars: 11 - Forks: 2
marcel-haag/security-c4po
Security-C4PO is an open-source web-application for managing and documenting penetration tests. This tool allows a security tester to keep track of the testing progress according to the OWASP Testing Guide. This application aims to make the offical Testing Guide more actionable to work with.
Language: TypeScript - Size: 9.81 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 3 - Forks: 1
pavi103/pentest-checklist
comprehensive pentesting checklist.
Size: 98.6 KB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 4 - Forks: 2
mbz0xc3/CyberSecurity-Tools
Cyber security related tools. Free to use and share.
Language: Python - Size: 6.84 KB - Last synced at: about 1 year ago - Pushed at: about 3 years ago - Stars: 0 - Forks: 1
x86xFX/CORS_exploiter
This tool build for test Cross Origin Sharing vulnerabilities
Language: Java - Size: 27.3 KB - Last synced at: over 1 year ago - Pushed at: almost 3 years ago - Stars: 5 - Forks: 0
Malwareman007/Hacking_Tools
All Type Of Tools written in multipule language .
Language: Python - Size: 145 KB - Last synced at: about 1 year ago - Pushed at: over 2 years ago - Stars: 15 - Forks: 5
lisus18ikrak/sitescanner
A simple and user friendly tool for information gathering and reconnaissance of a website
Language: Python - Size: 27.3 KB - Last synced at: over 1 year ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 0
n0mi1k/cacheblaster
A python tool to test for web cache poisoning denial of service (CPDoS) vulnerabilities.
Language: Python - Size: 4.88 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 3 - Forks: 0
Nabil-Official/N-WEB
WEB PENETRATION TESTING TOOL π₯
Language: Python - Size: 743 KB - Last synced at: over 1 year ago - Pushed at: over 2 years ago - Stars: 67 - Forks: 31
Revc0/Educational-Java-Web-Penetration-Test
Java Web Penetration Testing Project
Language: HTML - Size: 84 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 2 - Forks: 0
an4kein/_sql_injections
Hello my friends, it is my repo about sql injections. Call me in Telegram: @anakein
Size: 249 KB - Last synced at: over 1 year ago - Pushed at: over 4 years ago - Stars: 38 - Forks: 16
LiterallyEthical/portswigger-websecurity-academy-solutions
Collection of solutions for Portswigger Websecurity Academy Labs
Size: 2.93 KB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 1 - Forks: 0
sufyandaredevil/EHRSRC_ZTM
Notes & misc taken from Complete Ethical Hacking Bootcamp 2021: ZTM(ARCHIVED) and EC-Council's CodeRed
Language: Python - Size: 2.88 MB - Last synced at: about 2 years ago - Pushed at: over 2 years ago - Stars: 1 - Forks: 0
pentagridsec/PentagridResponseOverview
Response Overview Extension for BurpSuite
Language: Kotlin - Size: 6.43 MB - Last synced at: over 2 years ago - Pushed at: almost 3 years ago - Stars: 10 - Forks: 5
pentagridsec/PentagridBurpTransportEncoding
Burp Suite extensions if you want to teach Burp a new Transport-Encoding
Language: Python - Size: 275 KB - Last synced at: over 2 years ago - Pushed at: about 3 years ago - Stars: 7 - Forks: 3
Saad-AHLA/DVWA_Solutions
Size: 12.3 MB - Last synced at: about 2 years ago - Pushed at: over 3 years ago - Stars: 2 - Forks: 0
fxrhan/all-XSS-Payloads
This is a list contains 7000+ Cross Site Scripting Payloads.
Size: 82 KB - Last synced at: about 2 years ago - Pushed at: over 3 years ago - Stars: 10 - Forks: 0
Drupad-DeV/indy-CTF-Writeups
Indy CTFs Walkthroughs
Size: 44.9 KB - Last synced at: almost 2 years ago - Pushed at: almost 3 years ago - Stars: 0 - Forks: 0
thenurhabib/maincoon
MainCoon is an automated recon framework meant for gathering information during penetration testing of web applications.
Language: Python - Size: 118 KB - Last synced at: over 2 years ago - Pushed at: over 3 years ago - Stars: 8 - Forks: 0
arzuozkan/BasicLoginPage
Login page development with Flask and pentesting for the vulnerability
Language: HTML - Size: 18.6 KB - Last synced at: over 2 years ago - Pushed at: almost 3 years ago - Stars: 0 - Forks: 0
codeswhite/Domainator
A python3 based utility for domains and websites information gathering and reconnaissance
Language: Python - Size: 23.4 KB - Last synced at: about 2 years ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 2
TechUX/PyDos
Dos (Denial of Service) Attack Script in Python.Down Any WebServer in less than π.π― π¦π²π°πΌπ»π±π .It send unlimited number of packets to every port of website to make the web server down.
Size: 2.93 KB - Last synced at: about 2 years ago - Pushed at: about 4 years ago - Stars: 1 - Forks: 1
HarshilPatel007/webappsec
web application penetration testing and security notes.
Language: Python - Size: 63.5 KB - Last synced at: over 2 years ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0
purvasingh96/Ethical-Hacking-and-Penetration-Testing
:neckbeard: This repository contains slides and notes from my workshop at the Grace Hopper Conference, India (2019).
Size: 48.6 MB - Last synced at: over 2 years ago - Pushed at: over 4 years ago - Stars: 6 - Forks: 4
