Build software better, together

swisskyrepo / PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

python pentest payload bypass web-application hacking xss-vulnerability sqli-vulnerability-scanner vulnerability useful-payloads useful

Python Updated Oct 20, 2018

1N3 / Sn1per

2.1k

Automated Pentest Framework for Offensive Security Experts

pentest pentesting hacking scanner automated kali-linux recon sn1per dns metasploit vulnerabilities scans sn1per-professional nuke shellshock subnet

PHP Updated Oct 24, 2018 4 issues need help

SecWiki / windows-kernel-exploits

2k

windows-kernel-exploits Windows平台提权漏洞集合

windows kernel exploit tool collections pentest

C Updated Jul 15, 2018

SecWiki / linux-kernel-exploits

1.9k

linux-kernel-exploits Linux平台提权漏洞集合

linux kernel exploit tool collection awesome pentest

C Updated Apr 17, 2018

onlurking / awesome-infosec

1.9k

A curated list of awesome infosec courses and training resources.

infosec pentest courses penetration-testing security-professionals lab awesome security

Updated Oct 17, 2018 1 issue needs help

maurosoria / dirsearch

1.7k

Web path scanner

fuzzer fuzzing python pentest bruteforce security dirsearch dirbuster hacking

Python Updated Oct 24, 2018

nixawk / pentest-wiki

1.4k

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, pleas…

pentest security hacking

Python Updated Oct 25, 2018

lanjelot / patator

1.4k

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

pentest brute-force

Python Updated Aug 4, 2018

evilcos / xssor2

1.4k

XSS'OR - Hack with JavaScript.

probe pentest-tool xss csrf encoding hacking-tool pentest hack

JavaScript Updated Aug 22, 2018

coreb1t / awesome-pentest-cheat-sheets

1.2k

Collection of the cheat sheets useful for pentesting

cheatsheet security-cheat-sheets pentest-cheat-sheets security pentest awesome penetration-testing

Updated May 11, 2018

owtf / owtf

999

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more eff…

security owasp owtf python pentest kali-linux automation framework web-application-security web-security tornado mitm react

Python Updated Aug 22, 2018 11 issues need help

sensepost / objection

919

📱 objection - runtime mobile exploration

mobile pentest framework ios instrumentation frida security android assessment

Python Updated Oct 16, 2018 1 issue needs help

D4Vinci / Dr0p1t-Framework

831

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Python Updated Oct 20, 2018

infobyte / evilgrade

816

security update evilgrade fake pentest penetration payload

Perl Updated Jan 24, 2018

1N3 / Findsploit

784

Find exploits in local and online databases instantly

exploits metasploit nmap pentest hackers exploitdb find search

Shell Updated Sep 22, 2018

0x00-0x00 / ShellPop

765

Pop shells like a master.

shell reverse pop-shells hacking pentest bind remote

Python Updated Aug 11, 2018

cujanovic / SSRF-Testing

745

SSRF (Server Side Request Forgery) testing resources

ssrf pentest pentest-tool pentesting server-side-request-forgery

Python Updated Sep 14, 2018

m4n3dw0lf / pythem

741

pentest framework

Python Updated Oct 21, 2018

infobyte / spoilerwall

729

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies …

devops pranks pentesting pentest ctf firewall spoilerwall

Python Updated Jul 3, 2017

TryCatchHCF / Cloakify

711

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings…

Python Updated May 11, 2018

m0rtem / CloudFail

658

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

cloudflare tor ip database python3 scanner recon bruteforce cloudflare-ip pentest pentesting

Python Updated Jul 25, 2018

UndeadSec / SocialFish

633

Ultimate phishing tool. Socialize with the credentials.

php phishing python pentesting undead educational pentest

HTML Updated Sep 19, 2018

LandGrey / pydictor

606

A powerful and useful hacker dictionary builder for a brute-force attack

password-generator wordlist-generator social-engineering-attacks password-dictionaries password-wordlist bruteforce-attacks brute-force blasting pentesting pentest hackertools password-cracker hacking-tool hacking wordlist weak-passwords bruteforce bruteforce-password-cracker brute

Python Updated Jun 2, 2018

christophetd / CloudFlair

577

🔎 Find origin servers of websites behind by CloudFlare using Internet-wide scan data from Censys.

cloudflare pentest-tool pentest

Python Updated Jun 28, 2018 1 issue needs help

ron190 / jsql-injection

554

jSQL Injection is a Java application for automatic SQL database injection.

java database kali-linux pentest sql-injection

Java Updated May 13, 2018

TryCatchHCF / DumpsterFire

528

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, dis…

pentesting hacking hacking-tool pentest-tool automation security security-tools infosec pentest red-team blue-team red-teams blue-teams pentest-tools hacking-tools

Python Updated Jan 29, 2018

Sliim / pentest-env

521

Pentest environment deployer (kali linux + targets) using vagrant and chef.

chef vagrant pentest kali-linux pentest-environment virtualbox ctf vulnhub metasploitable ruby docker

Ruby Updated Oct 9, 2018

masatokinugawa / filterbypass

518

pentest xss security cheatsheet

Updated May 6, 2017

quentinhardy / odat

487

ODAT: Oracle Database Attacking Tool

oracle-database pentest-tool pentest privilege-escalation

Python Updated Oct 9, 2018

Hack-with-Github / Awesome-Security-Gists

466

A collection of various GitHub gists for hackers, pentesters and security researchers

security-gists payload infosec pentest xxe-payloads petya privacy

Updated Nov 4, 2017

pentest

Repositories 251

swisskyrepo / PayloadsAllTheThings

1N3 / Sn1per

SecWiki / windows-kernel-exploits

SecWiki / linux-kernel-exploits

onlurking / awesome-infosec

maurosoria / dirsearch

nixawk / pentest-wiki

lanjelot / patator

evilcos / xssor2

coreb1t / awesome-pentest-cheat-sheets

owtf / owtf

sensepost / objection

D4Vinci / Dr0p1t-Framework

infobyte / evilgrade

1N3 / Findsploit

0x00-0x00 / ShellPop

cujanovic / SSRF-Testing

m4n3dw0lf / pythem

infobyte / spoilerwall

TryCatchHCF / Cloakify

m0rtem / CloudFail

UndeadSec / SocialFish

LandGrey / pydictor

christophetd / CloudFlair

ron190 / jsql-injection

TryCatchHCF / DumpsterFire

Sliim / pentest-env

masatokinugawa / filterbypass

quentinhardy / odat

Hack-with-Github / Awesome-Security-Gists

Product

Platform

Support

Company