#

brute-force

Here are 592 public repositories matching this topic...

maurosoria / dirsearch

Star

Web path scanner

Updated Jan 1, 2021
Python

vanhauser-thc / thc-hydra

Star

Open

Hydra not decoding ^USER^ and ^PASS^ when passed as HTTP Headers

6

jhertz commented Apr 17, 2020

Hi All,

So I'm trying to use hydra to bruteforce a login on a system that uses custom http headers to receive the username and password. Hydra does not seem to be doing substitution of ^USER^ and ^PASS^ when used as HTTP headers. If I issue issuing a call to hydra like this:

hydra "http-post://0.0.0.0:8000/:H=username\:^USER^:H=password\:^PASS^" -l admin -p admin

I see the following r

Read more

enhancement good first issue help wanted

Open

Unknown GET Requests

2

Open

Feature Request - use pkgconfig to detect build dependencies

5

k8gege / K8tools

Star

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

database apt exploit scanner hacking password poc brute-force pentest bypass crack privilege-escalation 0day getshell netscan rar-mysql

Updated Dec 30, 2020
PowerShell

lanjelot / patator

Star

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

brute-force pentest

Updated Dec 23, 2020
Python

k8gege / Ladon

Star

大型内网渗透扫描器&Cobalt Strike，Ladon7.2内置94个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

security tools hack exploit scanner hacking password poc brute-force pentest portscan security-scanner exp security-tools ladon ipscanner getshell netscan

Updated Dec 30, 2020
C#

LandGrey / pydictor

Star

A powerful and useful hacker dictionary builder for a brute-force attack

password-generator bruteforce wordlist brute-force weak-passwords dictionary-attack wordlist-generator password-cracker social-engineering-attacks bruteforce-password-cracker password-wordlist hacker-dictionary-builder pydictor

Updated Oct 9, 2020
Python

brendan-rius / c-jwt-cracker

Star

JWT brute force cracker written in C

security brute-force cracker jwt-authentication

Updated Dec 4, 2020
C

m4n3dw0lf / pythem

Star

pentest framework

Updated Feb 21, 2019
Python

1N3 / BruteX

Star

Automatically brute force all services running on a target.

hacking bruteforce brute-force bugbounty brute bruteforce-attacks bruteforcing

Updated Jul 2, 2020
Shell

utkusen / leviathan

Star

wide range mass audit toolkit

python service-discovery brute-force sql-injection exploitation port-scanning

Updated Oct 3, 2018
Python

FeeiCN / ESD

Star

Enumeration sub domains(枚举子域名)

brute-force security-scanner security-tools subdomain-scanner subdomain-brute

Updated Mar 26, 2020
Python

duyet / bruteforce-database

Star

Bruteforce database

password bruteforce brute-force-attacks brute-force duyetdev password-dictionaries seclists

Updated Nov 22, 2020

ssb

kitabisa / ssb

Star

Secure Shell Bruteforcer — A faster & simpler way to bruteforce SSH server

go ssh golang ssh-server bruteforce brute-force ssh-client ssh-bruteforce

Updated Dec 31, 2020
Go

macmade / KeychainCracker

Star

macOS keychain cracking tool

macos security keychain hacking password wordlist brute-force cracking crack

Updated May 26, 2017
Objective-C

s0md3v / Blazy

Star

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

scanner waf bruteforce detector cloudflare brute-force sql-injection csrf clickjacking

Updated May 5, 2019
Python

0xdea / tactical-exploitation

Star

Modern tactical exploitation toolkit.

active-directory penetration-testing brute-force metasploit-framework information-gathering

Updated Dec 10, 2020
Python

ncsa / ssh-auditor

Star

The best way to scan for weak ssh passwords on your network

ssh security auditing brute-force discover

Updated Feb 20, 2020
Go

shmilylty / cheetah

Star

a very fast brute force webshell password tool

fast password brute-force cracker webshell cheetah

Updated Apr 20, 2020
Python

simonepri / upash

Star

🔒Unified API for password hashing algorithms

Updated Sep 5, 2018
JavaScript

Paradoxis / StegCracker

Star

Steganography brute-force utility to uncover hidden data inside files

penetration-testing steganography brute-force pentesting ctf ctf-tools steghide stegcracker

Updated Dec 25, 2020
Python

blark / aiodnsbrute

Star

Python 3.5+ DNS asynchronous brute force utility

python resolver dns security osint async subdomain enumeration brute-force pentesting recon red-team security-tools bruteforcing osint-resources subdomain-takeover subdomin-enumeration

Updated Apr 15, 2020
Python

Isaacdelly / Plutus

Star

An automated bitcoin wallet collider that brute forces random wallet addresses

Updated May 15, 2020
Python

lmammino / jwt-cracker

Sponsor Star

Simple HS256 JWT token brute force cracker

nodejs javascript jwt command command-line secrets bruteforce alphabet brute-force-attacks brute-force jwt-cracker cracker

Updated Oct 12, 2020
JavaScript

RASSec / pentestER-Fully-automatic-scanner

Star

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

brute-force security-scanner sensitive-data-security security-tools sensitive-data subdomain-scanner subdomain-brute

Updated Jul 11, 2018
Python

k8gege / LadonGo

Star

Ladon Pentest Scanner framework LadonGo一款开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

exploit scanner detection poc brute-force portscan security-tools ms17010 hacktools smbscan sshscan mysqlscan ftpscan bannerscan

Updated Dec 18, 2020
Go

nyxgeek / lyncsmash

Star

locate and attack Lync/Skype for Business

hacking brute-force pentesting lync skype-for-business user-enumeration derbycon

Updated May 13, 2020
Python

Moham3dRiahi / XBruteForcer

Star

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

wordpress drupal password-generator perl magento password bruteforce joomla brute-force-attacks brute-force passwords opencart bruteforce-attacks bruteforce-password-cracker bruteforcing password-attack xbruteforcer

Updated Mar 21, 2020
Perl

eddiejibson / limitrr

Star

Light NodeJS rate limiting and response delaying using Redis - including Express middleware.

nodejs light redis security protection promise express-middleware expressjs authorization discriminator ip rate brute-force force maximum rate-limiter expiry security-tools limiting

Updated Sep 9, 2020
JavaScript

GitHackTools / BruteDum

Star

BruteDum - Brute Force attacks SSH, FTP, Telnet, PostgreSQL, RDP, VNC with Hydra, Medusa and Ncrack

python ssh security ftp telnet postgresql hacking python3 hydra nmap brute-force medusa rdp vnc ncrack

Updated Jan 31, 2020
Python

ComThings / PandwaRF

Star

PandwaRF: RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or

security hacking spectrum-analyzer bluetooth-low-energy brute-force sdr smartphone rf-analysis cc1111

Updated Sep 16, 2020
Python

Improve this page

Add a description, image, and links to the brute-force topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the brute-force topic, visit your repo's landing page and select "manage topics."

You can’t perform that action at this time.