一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Support
Quality
Security
License
Reuse
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
Support
Quality
Security
License
Reuse
Find leaked secrets via github search
Support
Quality
Security
License
Reuse
Automatic SSRF fuzzer and exploitation tool
Support
Quality
Security
License
Reuse
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
Support
Quality
Security
License
Reuse
This repository contains the scanner component for Greenbone Community Edition.
Support
Quality
Security
License
Reuse
game of active directory
Support
Quality
Security
License
Reuse
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Support
Quality
Security
License
Reuse
A script that you can run in the background!
Support
Quality
Security
License
Reuse
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
Support
Quality
Security
License
Reuse
DNS Enumeration Script
Support
Quality
Security
License
Reuse
SSRF (Server Side Request Forgery) testing resources
Support
Quality
Security
License
Reuse
LKM Linux rootkit
Support
Quality
Security
License
Reuse
Privilege Escalation Project - Windows / Linux / Mac
Support
Quality
Security
License
Reuse
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
Support
Quality
Security
License
Reuse
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
Support
Quality
Security
License
Reuse
Privilege Escalation Enumeration Script for Windows
Support
Quality
Security
License
Reuse
一个红队知识仓库
Support
Quality
Security
License
Reuse
An evil RAT (Remote Administration Tool) for macOS / OS X.
Support
Quality
Security
License
Reuse
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
Support
Quality
Security
License
Reuse
cve-search - a tool to perform local searches for known vulnerabilities
Support
Quality
Security
License
Reuse
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.
Support
Quality
Security
License
Reuse
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
Support
Quality
Security
License
Reuse
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Support
Quality
Security
License
Reuse
Rust Weaponization for Red Team Engagements.
Support
Quality
Security
License
Reuse
R
RedTeam-Tactics-and-Techniquesby mantvydasb
PowerShell 
2004 Version:Current
License: No License (No License)
License: No License (No License)Red Teaming Tactics and Techniques
Support
Quality
Security
License
Reuse
Koadic C3 COM Command & Control - JScript RAT
Support
Quality
Security
License
Reuse
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Support
Quality
Security
License
Reuse
A database of PHP security advisories
Support
Quality
Security
License
Reuse
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Support
Quality
Security
License
Reuse
A
Active-Directory-Exploitation-Cheat-Sheetby Integration-IT
PowerShell 1924 Version:Current License: Permissive (MIT)
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Support
Quality
Security
License
Reuse
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
Support
Quality
Security
License
Reuse
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Support
Quality
Security
License
Reuse
无状态子域名爆破工具
Support
Quality
Security
License
Reuse
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
Support
Quality
Security
License
Reuse
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Support
Quality
Security
License
Reuse
Know the dangers of credential reuse attacks.
Support
Quality
Security
License
Reuse
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
Support
Quality
Security
License
Reuse
使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。
Support
Quality
Security
License
Reuse
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Support
Quality
Security
License
Reuse
Rockyou for web fuzzing
Support
Quality
Security
License
Reuse
:cat2:Medusa是一个红队武器库平台,目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能,持续开发中
Support
Quality
Security
License
Reuse
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
Support
Quality
Security
License
Reuse
Th3Inspector 🕵️ Best Tool For Information Gathering 🔎
Support
Quality
Security
License
Reuse
A container repository for my public web hacks!
Support
Quality
Security
License
Reuse
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
Support
Quality
Security
License
Reuse
The Last Web Recon Tool You'll Need
Support
Quality
Security
License
Reuse
溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
Support
Quality
Security
License
Reuse
A post-exploitation powershell tool for extracting juicy info from memory.
Support
Quality
Security
License
Reuse
Venom - A Multi-hop Proxy for Penetration Testers
Support
Quality
Security
License
Reuse
A
AppInfoScannerby kelvinBen
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
Python 2372Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2372Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
N
Nettackerby OWASP
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
HTML 2371Updated: 2 y ago License: Permissive (Apache-2.0)
2371Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
g
github-dorksby techgaun
Find leaked secrets via github search
Python 2353Updated: 2 y ago License: Permissive (Apache-2.0)
2353Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
S
SSRFmapby swisskyrepo
Automatic SSRF fuzzer and exploitation tool
Python 2321Updated: 2 y ago License: Permissive (MIT)
2321Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
O
OSCPRepoby rewardone
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
C 2297Updated: 2 y ago License: Permissive (MIT)
2297Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
o
openvas-scannerby greenbone
This repository contains the scanner component for Greenbone Community Edition.
C 2262Updated: 2 y ago License: Strong Copyleft (GPL-2.0)
2262Updated: 2 y ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
G
GOADby Orange-Cyberdefense
game of active directory
PowerShell 2259Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2259Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
J
JNDI-Injection-Exploitby welk1n
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Java 2228Updated: 2 y ago License: Permissive (MIT)
2228Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
n
nmapAutomatorby 21y4d
A script that you can run in the background!
Shell 2223Updated: 2 y ago License: Permissive (MIT)
2223Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
j
jexbossby joaomatosf
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
Python 2215Updated: 2 y ago License: Proprietary (Proprietary)
2215Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
d
dnsreconby darkoperator
DNS Enumeration Script
Python 2212Updated: 2 y ago License: Strong Copyleft (GPL-2.0)
2212Updated: 2 y ago License: Strong Copyleft (GPL-2.0)Support
Quality
Security
License
Reuse
S
SSRF-Testingby cujanovic
SSRF (Server Side Request Forgery) testing resources
Python 2206Updated: 2 y ago License: No License (No License)
2206Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
R
Support
Quality
Security
License
Reuse
B
BeRootby AlessandroZ
Privilege Escalation Project - Windows / Linux / Mac
Python 2184Updated: 2 y ago License: No License (No License)
2184Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
m
malicious-pdfby jonaslejon
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
Python 2155Updated: 2 y ago License: Permissive (BSD-2-Clause)
2155Updated: 2 y ago License: Permissive (BSD-2-Clause)Support
Quality
Security
License
Reuse
P
Penetration-Testing-Toolsby mgeeky
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
PowerShell 2133Updated: 2 y ago License: Permissive (MIT)
2133Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
P
PrivescCheckby itm4n
Privilege Escalation Enumeration Script for Windows
PowerShell 2102Updated: 2 y ago License: Permissive (BSD-3-Clause)
2102Updated: 2 y ago License: Permissive (BSD-3-Clause)Support
Quality
Security
License
Reuse
A
Support
Quality
Security
License
Reuse
E
EvilOSXby Marten4n6
An evil RAT (Remote Administration Tool) for macOS / OS X.
Python 2074Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2074Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
a
archerysecby archerysec
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
Python 2064Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2064Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
c
cve-searchby cve-search
cve-search - a tool to perform local searches for known vulnerabilities
Python 2054Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)
2054Updated: 2 y ago License: Strong Copyleft (AGPL-3.0)Support
Quality
Security
License
Reuse
b
backdoor-apkby dana-at-cp
backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.
Shell 2033Updated: 2 y ago License: Permissive (Apache-2.0)
2033Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
r
reverse-shell-generatorby 0dayCTF
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
HTML 2024Updated: 2 y ago License: Permissive (MIT)
2024Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
R
Reconnoitreby codingo
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
Python 2023Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
2023Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
O
OffensiveRustby trickster0
Rust Weaponization for Red Team Engagements.
Rust 2010Updated: 2 y ago License: No License (No License)
2010Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
R
RedTeam-Tactics-and-Techniquesby mantvydasb
Red Teaming Tactics and Techniques
PowerShell 2004Updated: 3 y ago License: No License (No License)
2004Updated: 3 y ago License: No License (No License)Support
Quality
Security
License
Reuse
k
koadicby zerosum0x0
Koadic C3 COM Command & Control - JScript RAT
Python 2002Updated: 3 y ago License: Permissive (Apache-2.0)
2002Updated: 3 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
S
Stowawayby ph4ntonn
👻Stowaway -- Multi-hop Proxy Tool for pentesters
Go 1958Updated: 2 y ago License: Permissive (MIT)
1958Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
s
security-advisoriesby FriendsOfPHP
A database of PHP security advisories
PHP 1931Updated: 2 y ago License: Permissive (Unlicense)
1931Updated: 2 y ago License: Permissive (Unlicense)Support
Quality
Security
License
Reuse
p
phpsploitby nil0x42
Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor
Python 1925Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
1925Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
A
Active-Directory-Exploitation-Cheat-Sheetby Integration-IT
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
PowerShell 1924Updated: 2 y ago License: Permissive (MIT)
1924Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
C
CloudFlairby christophetd
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
Python 1914Updated: 2 y ago License: No License (No License)
1914Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
s
snoopby snooppr
Snoop — инструмент разведки на основе открытых данных (OSINT world)
Python 1913Updated: 2 y ago License: Proprietary (Proprietary)
1913Updated: 2 y ago License: Proprietary (Proprietary)Support
Quality
Security
License
Reuse
k
Support
Quality
Security
License
Reuse
l
log4shellby NCSC-NL
Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
Python 1891Updated: 2 y ago License: No License (No License)
1891Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
C
CloudFailby m0rtem
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
Python 1888Updated: 2 y ago License: Permissive (MIT)
1888Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
C
Cr3dOv3rby D4Vinci
Know the dangers of credential reuse attacks.
Python 1887Updated: 2 y ago License: Permissive (MIT)
1887Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
m
macro_packby sevagas
macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
Python 1872Updated: 2 y ago License: Permissive (Apache-2.0)
1872Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
v
vulstudyby c0ny1
使用docker快速搭建各大漏洞靶场,目前可以一键搭建17个靶场。
Shell 1872Updated: 2 y ago License: No License (No License)
1872Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
P
POC-Tby Xyntax
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Python 1867Updated: 2 y ago License: No License (No License)
1867Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
O
OneListForAllby six2dez
Rockyou for web fuzzing
Shell 1841Updated: 2 y ago License: No License (No License)
1841Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
M
Medusaby Ascotbe
:cat2:Medusa是一个红队武器库平台,目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能,持续开发中
Python 1838Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
1838Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
i
is-website-vulnerableby lirantal
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
JavaScript 1836Updated: 2 y ago License: Permissive (Apache-2.0)
1836Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
T
Th3inspectorby Moham3dRiahi
Th3Inspector 🕵️ Best Tool For Information Gathering 🔎
Perl 1806Updated: 2 y ago License: Permissive (MIT)
1806Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
H
HackVaultby 0xSobky
A container repository for my public web hacks!
JavaScript 1797Updated: 2 y ago License: No License (No License)
1797Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
s
security-researchby google
This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.
Go 1797Updated: 2 y ago License: Permissive (Apache-2.0)
1797Updated: 2 y ago License: Permissive (Apache-2.0)Support
Quality
Security
License
Reuse
F
FinalReconby thewhiteh4t
The Last Web Recon Tool You'll Need
Python 1793Updated: 2 y ago License: Permissive (MIT)
1793Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse
T
TrackRayby iSafeBlue
溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
Java 1783Updated: 2 y ago License: Strong Copyleft (GPL-3.0)
1783Updated: 2 y ago License: Strong Copyleft (GPL-3.0)Support
Quality
Security
License
Reuse
m
mimikittenzby orlyjamie
A post-exploitation powershell tool for extracting juicy info from memory.
PowerShell 1759Updated: 2 y ago License: No License (No License)
1759Updated: 2 y ago License: No License (No License)Support
Quality
Security
License
Reuse
V
Venomby Dliv3
Venom - A Multi-hop Proxy for Penetration Testers
Go 1743Updated: 2 y ago License: Permissive (MIT)
1743Updated: 2 y ago License: Permissive (MIT)Support
Quality
Security
License
Reuse