Stars
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Automatic SQL injection and database takeover tool
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
E-mails, subdomains and names Harvester - OSINT
Impacket is a collection of Python classes for working with network protocols.
Cross-platform lib for process and system monitoring in Python
A swiss army knife for pentesting networks
(⌐■_■) - Deep Reinforcement Learning instrumenting bettercap for WiFi pwning.
Rewrite of the popular wireless network auditor, "wifite"
lgandx / Responder
Forked from SpiderLabs/ResponderResponder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
Veil 3.1.X (Check version info in Veil at runtime)
BleachBit system cleaner for Windows and Linux
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
Tool for Active Directory Certificate Services enumeration and abuse
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
Fully featured and community-driven hacking environment
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
A tool to dump a git repository from a website
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
A Python based ingestor for BloodHound