Skip to content
View kefkahacks's full-sized avatar
38 followers · 192 following

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull Shark

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull Shark

Highlights

Block or report kefkahacks

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

105 stars written in Python
Clear filter

swisskyrepo / PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Python 71,474 16,190 Updated Nov 2, 2025

minimaxir / big-list-of-naughty-strings

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Python 47,480 2,161 Updated Apr 18, 2024

sqlmapproject / sqlmap

Automatic SQL injection and database takeover tool

Python 35,720 6,099 Updated Nov 7, 2025

smicallef / spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Python 15,790 2,677 Updated Dec 15, 2024

laramies / theHarvester

E-mails, subdomains and names Harvester - OSINT

Python 14,883 2,338 Updated Nov 6, 2025

wifiphisher / wifiphisher

The Rogue Access Point Framework

Python 14,232 2,708 Updated Feb 4, 2025

maurosoria / dirsearch

Web path scanner

Python 13,613 2,402 Updated Oct 20, 2025

threat9 / routersploit

Exploitation Framework for Embedded Devices

Python 12,806 2,368 Updated Jun 10, 2025

s0md3v / Photon

Incredibly fast crawler designed for OSINT.

Python 12,359 1,653 Updated Mar 31, 2025

aboul3la / Sublist3r

Fast subdomains enumeration tool for penetration testers

Python 10,683 2,195 Updated Aug 2, 2024

n1nj4sec / pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Python 8,863 1,845 Updated Mar 22, 2024

derv82 / wifite2

Rewrite of the popular wireless network auditor, "wifite"

Python 7,372 1,532 Updated Aug 20, 2024

SerpentAI / SerpentAI

Game Agent Framework. Helping you create AIs / Bots that learn to play any game you own!

Python 6,936 806 Updated Nov 7, 2022

guardicore / monkey

Infection Monkey - An open-source adversary emulation platform

Python 6,886 810 Updated May 1, 2025

s0md3v / Arjun

HTTP parameter discovery suite.

Python 5,919 837 Updated Feb 20, 2025

commixproject / commix

Automated All-in-One OS Command Injection Exploitation Tool.

Python 5,510 899 Updated Oct 27, 2025

andresriancho / w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Python 4,812 1,231 Updated Feb 22, 2023

khast3x / h8mail

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Python 4,711 561 Updated Aug 15, 2023

OTRF / ThreatHunter-Playbook

A community-driven, open-source project to share detection logic, adversary tradecraft and resources to make detection development more efficient.

Python 4,377 846 Updated Feb 15, 2024

ReversecLabs / drozer

The Leading Security Assessment Framework for Android.

Python 4,362 816 Updated Jun 24, 2025

DanMcInerney / wifijammer

Continuously jam all wifi clients/routers

Python 4,179 798 Updated Jul 20, 2024

RUB-NDS / PRET

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

Python 4,165 641 Updated Aug 2, 2024

guelfoweb / knock

Knock Subdomain Scan

Python 4,090 886 Updated Oct 26, 2025

epinna / tplmap

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

Python 4,063 687 Updated Apr 21, 2024

trustedsec / unicorn

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

Python 3,878 823 Updated Jan 24, 2024

ivre / ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

Python 3,832 670 Updated Nov 6, 2025

lanjelot / patator

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

Python 3,790 827 Updated May 20, 2025

nixawk / pentest-wiki

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Python 3,657 938 Updated Sep 13, 2023

TheRook / subbrute

A DNS meta-query spider that enumerates DNS records, and subdomains.

Python 3,471 662 Updated Jan 13, 2022

Ekultek / WhatWaf

Detect and bypass web application firewalls and protection systems

Python 2,849 467 Updated Aug 11, 2024
Next