An extremely fast Python package and project manager, written in Rust.

Defeating Windows User Account Control

Find, verify, and analyze leaked credentials

🕵️‍♂️ Offensive Google framework.

Crowbar is brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supported by thc-hydra and other popular brute forcing tools.

Damn Vulnerable Restaurant is an intentionally vulnerable Web API game for learning and training purposes dedicated to developers, ethical hackers and security engineers.

A tool to dump the login password from the current linux user

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure …

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Credentials recovery project

Username tools for penetration testing

AIL framework - Analysis Information Leak framework

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Metasploitable3 is a VM that is built from the ground up with a large amount of security vulnerabilities.

A tool to dump a git repository from a website

A language-agnostic "shebang interpreter" that enables you to write scripts in compiled languages.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Installs parrotOS repository and commonly used tools from parrotOS in ubuntu/debian

Attack surface detector that identifies endpoints by static analysis

AzureGoat : A Damn Vulnerable Azure Infrastructure

Blazing fast Neovim framework providing solid defaults and a beautiful UI, enhancing your neovim experience.

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penet…

Kraken: A multi-platform distributed brute-force password cracking system

Webeye is a Powerful package for making ethical hacking tools easier

✨ Innovative and open-source visualization application that transforms various data formats, such as JSON, YAML, XML, CSV and more, into interactive graphs.

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

A fast, simple, recursive content discovery tool written in Rust.

Open Cyber Threat Intelligence Platform

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more