Automatic SQL injection and database takeover tool
Python
Updated Aug 6, 2019
#
pentesting
Repositories 882
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool…
pupy
python
remote-access
post-exploitation
pentesting
windows
linux
android
rat
shell
reverse-shell
reflective-injection
backdoor
payload
meterpreter
remote-admin-tool
mac-os
Python
Updated Jun 3, 2019
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and …
mobile-app
pentesting
android-application
ios-app
runtime-analysis
network-analysis
static-analysis
reverse-engineering
dynamic-analysis
mobile-security
Good first issues
Add 8.7 and 8.8 for android and ios: show how you can delay the attacker or report tampering to the backend
Good first issue
#1113
opened Jan 11, 2019 by
commjoen
2
#1041
opened Oct 14, 2018 by
commjoen
Add Practical Examples for Detection and Exploitation of Code Quality Flaws
Good first issue
enhancement
#797
opened Sep 14, 2017 by
b-mueller
4
HTML
Updated Aug 8, 2019
hydra
penetration-testing
password-cracker
network-security
hydra
thc
pentesting
pentest
pentest-tool
brute-force
brute-force-passwords
bruteforce-attacks
brute-force-attacks
bruteforcing
bruteforcer
bruteforce
password-cracking
Good first issues
C
Updated Jul 29, 2019
Automated pentest framework for offensive security experts
pentest
pentesting
hacking
scanner
automated
kali-linux
recon
sn1per
dns
metasploit
vulnerabilities
scans
sn1per-professional
nuke
shellshock
subnet
vulnerability
osint
xerosecurity
bugbounty
Shell
Updated Aug 6, 2019
A swiss army knife for pentesting networks
Python
Updated Jul 22, 2019
Web path scanner
fuzzer
fuzzing
python
pentest
bruteforce
security
dirsearch
dirbuster
hacking
pentesting
penetration-testing
Python
Updated Jul 21, 2019
An Information Security Reference That Doesn't Suck
infosec
infosec-reference
reverse-engineering
hacking
pentesting
penetration-testing
references
linux
privilege-escalation
exfiltration
information-security
blueteam
red-team
windows
osx
forensics
hacking-simulator
privilege-escalation-exploits
mitre-attack-db
Updated Jul 31, 2019
A collection of open source and commercial tools that aid in red team operations.
Updated Jul 28, 2019
Collaborative Penetration Test and Vulnerability Management Platform
devops
faraday
penetration-testing
vulnerability
vulnerability-scanners
security
security-audit
pentesting
continuous-scanning
collaborative
infosec
vulnerability-management
Python
Updated Jun 7, 2019
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
security
pentesting
infosec
exploits
security-audit
vulnerability-detection
scanner
vulnerability-assessment
vulnerability-scanners
Python
Updated Jun 27, 2019
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
owasp
javascript
vulnerable
hacking
application-security
owasp-top-10
owasp-top-ten
pentesting
vulnapp
appsec
ctf
Good first issues
JavaScript
Updated Aug 7, 2019
Directory/File, DNS and VHost busting tool written in Go
Go
Updated Jul 27, 2019
Automated All-in-One OS command injection and exploitation tool.
Python
Updated Aug 8, 2019
The Leading Security Assessment Framework for Android.
Python
Updated May 12, 2019
The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mo…
mobile-app
pentesting
android-application
ios-app
runtime-analysis
network-analysis
static-analysis
reverse-engineers
dynamic-analysis
Updated Jun 9, 2019
Next generation web scanner
security
web
scanner
ruby
penetration-testing
kali-linux
owasp
penetration-testing-tools
penetration-test
hacking
hacking-tools
network-security
recon
appsec
application-security
pentesting
pentesting-tools
pentest
web-hacking
Ruby
Updated Jun 23, 2019
Cameradar hacks its way into RTSP videosurveillance cameras
penetration-testing
security
hacking
infosec
rtsp
cctv
cameras
hacking-tool
pentesting
security-tools
netsec
Go
Updated Jul 2, 2019
Wiki to collect Red Team infrastructure hardening resources
Updated Mar 25, 2019
This is a multi-use bash script for Linux systems to audit wireless networks.
evil-twin
wps
security
beef
sslstrip
bash
sniffing
wireless
aircrack
handshake
linux
hacking
pentesting
pixie-dust
wep
docker
denial-of-service
wpa-wpa2
5ghz
enterprise
Shell
Updated Aug 7, 2019
The LAZY script will make your life easier, and of course faster.
kali-scripts
kali-linux
shell-script
payload-generator
payload
wifi-testing
penetration-testing
pentesting
pentest-tool
wifi-password
wpa2-handshake
wpa-cracker
pixie-dust
metasploit-framework
eternalblue-doublepulsar-metasploit
wifiphisher
antivirus-evasion
bypass-av
bypass-antivirus
sqlinjection
Shell
Updated Aug 2, 2019
A high performance offensive security tool for reconnaissance and vulnerability scanning
reconnaissance
scanner
vulnerability-assessment
vulnerability-scanner
enumeration
pentesting
pentest-tool
hacking-tool
offensive-security
security-scanner
fuzzing
information-gathering
hacking
raccoon
osint
Python
Updated Nov 24, 2018
SubFinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework…
subdomain
subdomain-enumeration
subdomain-bruteforcing
bruteforcing
hacking
bug-bounty
penetration-testing
reconaissance
subdomain-scanner
enumeration
discover-services
hacking-tool
security-tools
security-audit
security-scanner
subdomain-brute
subdomain-takeover
osint
osint-resources
pentesting
Good first issues
#112
opened Jul 6, 2018 by
picatz
#46
opened May 12, 2018 by
Ice3man543
Go
Updated Jul 8, 2019
Know the dangers of credential reuse attacks.
hacking
hacking-tool
pentesting
credentials
stealth
leaks
haveibeenpwned
hacked-emails
credential-reuse-attacks
leak
haveibeenpwnd
Python
Updated Mar 28, 2019
Python
Updated Feb 6, 2018
Penetration Testing / OSCP Biggest Reference Bank / Cheatsheet
penetration-testing
security
hacking
cheatsheet
oscp
information-security
pentesting
howto-tutorial
refresher
penetration-test
cheatsheet-god
oscp5
oscp-tools
oscp-journey
penetration
security-tools
security-vulnerability
hacking-framework
hacking-tool
hacking-code
Updated Jun 16, 2019
The cheat sheet about Java Deserialization vulnerabilities
Updated Jun 26, 2019
File upload vulnerability scanner and exploitation tool.
Python
Updated Jun 12, 2019
An evil RAT (Remote Administration Tool) for macOS / OS X.
Python
Updated Jan 18, 2019
Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
Python
Updated Mar 2, 2019