Stars
Incredibly fast crawler designed for OSINT.
WiFi Jumper is a small open-wifi jumping leech, spilling it's guts whenever it gets a chance to do so.
Cloak can backdoor any python script with some tricks.
A Router WiFi key recovery/cracking tool with a twist.
port of mimipenguin.sh in python with some additional protection features
Python virus that will make your pc paralyzed once it opened :D
some python3 functions to add spreading features to any python backdoor
XRay is a tool for recon, mapping and OSINT gathering from public networks.
A repo for collecting and organizing security tools of various types. As new ones come out, they get added to the list.
A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
grep rough audit - source code auditing tool
Self contained htaccess shells and attacks
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…
Automatic SQL injection and database takeover tool
NFC card reader Android app. Currently reads the german GeldKarte and some credit cards.
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
This repository contains some bettercap transparent proxy example modules.
A curated list of the most common and most interesting robots.txt disallowed directories.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
A PoC backdoor that uses Gmail as a C&C server