🍺 The missing package manager for macOS (or Linux)

Metasploit Framework

A curated list of awesome awesomeness

The Ruby Programming Language

A simple, Git-powered wiki with a local frontend and support for many kinds of markup and content.

WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites. Contact us via contact@wpscan.com

Next generation web scanner

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Web Application Security Scanner Framework

AdoptOpenJDK HomeBrew Tap

Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.

🔱 Powerfull XSS Scanning and Parameter analysis tool&gem

Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等

A tool for embedding XXE/XML exploits into different filetypes

A Ruby framework designed to aid in the penetration testing of WordPress systems.

SQL Vulnerability Scanner

Pattern recognition for hosts, services, and content

Homebrew Tap - Pen Test Tools

A script to enumerate virtual hosts on a server.

An open-source document management tool for enterprise self host.

DarkAngel 是一款全自动白帽漏洞扫描器，从hackerone、bugcrowd资产监听到漏洞报告生成、漏洞URL截屏、消息通知。

network visualization & pentest reporting

SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.

A list of cloud ranges from different providers.

fofa website

CASino is a Ruby-based Single Sign-On solution supporting the CAS standard

A malware/botnet analysis framework written in Ruby.

A web vulnerability scanner framework