Lists (31)
AD Tools 🏛️
Android Security 📱
AWS Security ☁️
Tools for improve AWS environments securityC2 🟥
Cloudflare WAF ☁️
Tools for audit and test Cloudflare WAFCode Analysis 👨🏻💻
Tools for analyzing codeCryptography-Encoding-Crackin🔐
Digital Forensic 🟦
Tools for performing digital forensicEmail Header Analyzer 📧
Tools for analyze emailsEvasion Tools 🟥
Tools for automated obfuscationFlipper Zero 🐬
Honeypots 🟦
ICS/SCADA Security 🔒
Tools for ICS/SCADAIncident Response 🟦
Tools for performing Incident ResponseInformation Gathering 🟥
Tools for enumerating target and gain information about targetsIoT PT 🟥
Tools for performing Internet of Things Penetration TestingM365 / Azure Security ☁️
Malware Analysis 🟦
Tools for performing Malware Analysis and SandboxesNetwork PT 🟥
Tools for performing network pentesting and packet craftingOSINT 🕵🏻
Tools for perfoming Open Source IntelligencePhishing 📦
Tools for performing phishingReports 📝
Tools for automated reportsSoftware Security
Steganography 🪄
Tools for performing steganographyWAF 🟦
Web Application PT 🟥
Tools for performing Web Application PTWiFi PT 🟥
Tools for performing WiFi Penetation TestingWindows Events Log 🟦
Tools for analyzing and parsing Windows Events LogWindows PT 🟥
Wordlists 📝
Tools for creating personalized wordlists and for mangling themYara 🟦
Tools for Yara rulesStars
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
A Python module to bypass Cloudflare's anti-bot page.
The FLARE team's open-source tool to identify capabilities in executable files.
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
w3af: web application attack and audit framework, the open source web vulnerability scanner.
The Leading Security Assessment Framework for Android.
IntelOwl: manage your Threat Intelligence at scale
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
Fast and powerful SSL/TLS scanning library.
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.
Create a USB Rubber Ducky like device using a Raspberry PI Pico
🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
Detect and bypass web application firewalls and protection systems
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Please no pull requests for this repository. Thanks!