EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Support
Quality
Security
License
Reuse
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Support
Quality
Security
License
Reuse
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Support
Quality
Security
License
Reuse
Open Source Vulnerability Management Platform
Support
Quality
Security
License
Reuse
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。10.10.6内置230个功能模块,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchange
Support
Quality
Security
License
Reuse
A pretty sweet vulnerability scanner
Support
Quality
Security
License
Reuse
Automated All-in-One OS Command Injection Exploitation Tool.
Support
Quality
Security
License
Reuse
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Support
Quality
Security
License
Reuse
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Support
Quality
Security
License
Reuse
The LAZY script will make your life easier, and of course faster.
Support
Quality
Security
License
Reuse
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Support
Quality
Security
License
Reuse
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Support
Quality
Security
License
Reuse
My simple Swiss Army knife for http/https troubleshooting and profiling.
Support
Quality
Security
License
Reuse
快速搭建各种漏洞环境(Various vulnerability environment)
Support
Quality
Security
License
Reuse
The ultimate WinRM shell for hacking/pentesting
Support
Quality
Security
License
Reuse
Common User Passwords Profiler (CUPP)
Support
Quality
Security
License
Reuse
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Support
Quality
Security
License
Reuse
Study Notes For Web Hacking / Web安全学习笔记
Support
Quality
Security
License
Reuse
Knock Subdomain Scan
Support
Quality
Security
License
Reuse
the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
Support
Quality
Security
License
Reuse
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Support
Quality
Security
License
Reuse
Git All the Payloads! A collection of web attack payloads.
Support
Quality
Security
License
Reuse
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
Support
Quality
Security
License
Reuse
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Support
Quality
Security
License
Reuse
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Support
Quality
Security
License
Reuse
A fast sub domain brute tool for pentesters
Support
Quality
Security
License
Reuse
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Support
Quality
Security
License
Reuse
Fully automated offensive security framework for reconnaissance and vulnerability scanning
Support
Quality
Security
License
Reuse
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
Support
Quality
Security
License
Reuse
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Support
Quality
Security
License
Reuse
A python script that finds endpoints in JavaScript files
Support
Quality
Security
License
Reuse
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
Support
Quality
Security
License
Reuse
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
Support
Quality
Security
License
Reuse
DefectDojo is a DevSecOps and vulnerability management tool.
Support
Quality
Security
License
Reuse
A collection of custom security tools for quick needs.
Support
Quality
Security
License
Reuse
Automation for internal Windows Penetrationtest / AD-Security
Support
Quality
Security
License
Reuse
Weaponized web shell
Support
Quality
Security
License
Reuse
A high performance offensive security tool for reconnaissance and vulnerability scanning
Support
Quality
Security
License
Reuse
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
Support
Quality
Security
License
Reuse
l
linux-smart-enumerationby diego-treitos
Shell 
2742 Version:Current License: Strong Copyleft (GPL-3.0)
Linux enumeration tool for pentesting and CTFs with verbosity levels
Support
Quality
Security
License
Reuse
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Support
Quality
Security
License
Reuse
:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
Support
Quality
Security
License
Reuse
File upload vulnerability scanner and exploitation tool.
Support
Quality
Security
License
Reuse
Python Remote Administration Tool (RAT)
Support
Quality
Security
License
Reuse
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Support
Quality
Security
License
Reuse
All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
Support
Quality
Security
License
Reuse
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Support
Quality
Security
License
Reuse
An ArchLinux based distribution for penetration testers and security researchers.
Support
Quality
Security
License
Reuse
An OOB interaction gathering server and client library
Support
Quality
Security
License
Reuse
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
Support
Quality
Security
License
Reuse
E
EyeWitnessby FortyNorthSecurity
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Python 4183Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
4183Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
A
AutoReconby Tib3rius
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Python 4120Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
4120Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
D
DefaultCreds-cheat-sheetby ihebski
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Python 4086Updated: 2 y ago License: Permissive (MIT)
4086Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
f
faradayby infobyte
Open Source Vulnerability Management Platform
Python 4018Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
4018Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
L
Ladonby k8gege
Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。10.10.6内置230个功能模块,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchange
PowerShell 3980Updated: 2 y ago License: Permissive (MIT)
3980Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
f
flanby cloudflare
A pretty sweet vulnerability scanner
Python 3913Updated: 2 y ago License: Permissive (BSD-3-Clause)
3913Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
c
commixby commixproject
Automated All-in-One OS Command Injection Exploitation Tool.
Python 3872Updated: 2 y ago License: Proprietary (Proprietary)
3872Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
A
ARLby TophantTechnology
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Python 3823Updated: 2 y ago License: Proprietary (Proprietary)
3823Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
e
exphubby zhzyker
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Python 3753Updated: 2 y ago
License: No License (No License)
3753Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
l
lscriptby arismelachroinos
The LAZY script will make your life easier, and of course faster.
Shell 3642Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3642Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
s
scan4allby hktalent
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
Go 3641Updated: 2 y ago License: Permissive (BSD-3-Clause)
3641Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
K
KingOfBugBountyTipsby KingOfBugbounty
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Python 3617Updated: 2 y ago License: No License (No License)
3617Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
h
htrace.shby trimstray
My simple Swiss Army knife for http/https troubleshooting and profiling.
Shell 3594Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3594Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
V
VulAppsby Medicean
快速搭建各种漏洞环境(Various vulnerability environment)
Shell 3563Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3563Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
e
evil-winrmby Hackplayers
The ultimate WinRM shell for hacking/pentesting
Ruby 3509Updated: 2 y ago License: Weak Copyleft (LGPL-3.0)
3509Updated: 2 y ago License: Weak Copyleft (LGPL-3.0)Support
Quality
Security
License
Reuse
c
cuppby Mebus
Common User Passwords Profiler (CUPP)
Python 3501Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3501Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
x
xunfengby ysrc
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Python 3382Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3382Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
L
Learn-Web-Hackingby LyleMi
Study Notes For Web Hacking / Web安全学习笔记
Python 3366Updated: 2 y ago License: Permissive (CC0-1.0)
3366Updated: 2 y ago License: Permissive (CC0-1.0)Support
Quality
Security
License
Reuse
k
Support
Quality
Security
License
Reuse
G
GDA-android-reversing-Toolby charles2gan
the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy leaking detection, vulnerability detection, path solving, packer identification, variable tracking, deobfuscation, python&java scripts, device memory extraction, data decryption, and encryption, etc.
Java 3321Updated: 2 y ago License: Permissive (Apache-2.0)
3321Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
t
tplmapby epinna
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Python 3313Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3313Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
p
payloadsby foospidy
Git All the Payloads! A collection of web attack payloads.
Shell 3305Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3305Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
l
log4j-scanby fullhunt
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
Python 3214Updated: 2 y ago License: Permissive (MIT)
3214Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
p
patatorby lanjelot
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Python 3198Updated: 2 y ago License: Strong Copyleft (GPL-2.0)
3198Updated: 2 y ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
p
pocsuite3by knownsec
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
Python 3138Updated: 2 y ago License: Proprietary (Proprietary)
3138Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
s
subDomainsBruteby lijiejie
A fast sub domain brute tool for pentesters
Python 3126Updated: 2 y ago License: No License (No License)
3126Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
p
pentest-wikiby nixawk
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
Python 3085Updated: 2 y ago License: Permissive (MIT)
3085Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
O
Osmedeusby j3ssie
Fully automated offensive security framework for reconnaissance and vulnerability scanning
Python 3084Updated: 4 y ago License: Permissive (MIT)
3084Updated: 4 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
d
discoverby leebaird
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
PowerShell 3052Updated: 2 y ago License: Permissive (MIT)
3052Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
v
vulmapby zhzyker
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
Python 3002Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
3002Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
L
LinkFinderby GerbenJavado
A python script that finds endpoints in JavaScript files
Python 2986Updated: 2 y ago License: Permissive (MIT)
2986Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
V
Villainby t3l3machus
Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).
Python 2893Updated: 2 y ago License: Proprietary (Proprietary)
2893Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
k
kscanby lcvvvv
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
Go 2850Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2850Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
d
django-DefectDojoby DefectDojo
DefectDojo is a DevSecOps and vulnerability management tool.
HTML 2848Updated: 2 y ago License: Permissive (BSD-3-Clause)
2848Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
p
pentest-toolsby gwen001
A collection of custom security tools for quick needs.
Python 2843Updated: 2 y ago License: No License (No License)
2843Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
W
WinPwnby S3cur3Th1sSh1t
Automation for internal Windows Penetrationtest / AD-Security
PowerShell 2830Updated: 2 y ago License: Permissive (BSD-3-Clause)
2830Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
w
Support
Quality
Security
License
Reuse
R
Raccoonby evyatarmeged
A high performance offensive security tool for reconnaissance and vulnerability scanning
Python 2793Updated: 2 y ago License: Permissive (MIT)
2793Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
r
reGeorgby sensepost
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
Python 2753Updated: 2 y ago License: Proprietary (Proprietary)
2753Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
l
linux-smart-enumerationby diego-treitos
Linux enumeration tool for pentesting and CTFs with verbosity levels
Shell 2742Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2742Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
B
BurpSuite-collectionsby Mr-xn
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Python 2564Updated: 2 y ago License: Permissive (MIT)
2564Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
K
Kernelhubby Ascotbe
:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
C 2563Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)
2563Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)Support
Quality
Security
License
Reuse
f
fuxploiderby almandin
File upload vulnerability scanner and exploitation tool.
Python 2546Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2546Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
S
Stitchby nathanlopez
Python Remote Administration Tool (RAT)
Python 2539Updated: 2 y ago License: Proprietary (Proprietary)
2539Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
M
MailSniperby dafthack
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
PowerShell 2526Updated: 2 y ago License: Permissive (MIT)
2526Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
R
RED_HAWKby Tuhinshubhra
All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
PHP 2501Updated: 2 y ago License: Permissive (MIT)
2501Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
b
black-hat-rustby skerkour
Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Rust 2479Updated: 2 y ago License: Permissive (MIT)
2479Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
b
blackarchby BlackArch
An ArchLinux based distribution for penetration testers and security researchers.
Shell 2465Updated: 2 y ago License: Proprietary (Proprietary)
2465Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
i
interactshby projectdiscovery
An OOB interaction gathering server and client library
Go 2434Updated: 2 y ago License: Permissive (MIT)
2434Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
h
hoaxshellby t3l3machus
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
Python 2429Updated: 2 y ago License: Permissive (BSD-2-Clause)
2429Updated: 2 y ago License: Permissive (BSD-2-Clause)Support
Quality
Security
License
Reuse