The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWA…

Python 12,545 2,547 Updated Nov 9, 2025

evilsocket / opensnitch

OpenSnitch is a GNU/Linux interactive application firewall inspired by Little Snitch.

Python 12,377 590 Updated Sep 24, 2025

byt3bl33d3r / CrackMapExec

A swiss army knife for pentesting networks

Python 8,963 1,697 Updated Dec 6, 2023

n1nj4sec / pupy

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

Python 8,863 1,846 Updated Mar 22, 2024

lgandx / Responder

Forked from SpiderLabs/Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Python 6,119 842 Updated Oct 30, 2025

dwisiswant0 / apkleaks

Scanning APK file for URIs, endpoints & secrets.

Python 5,702 556 Updated Aug 20, 2025

EdOverflow / can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Python 5,440 778 Updated Feb 8, 2025

ivre / ivre

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…

Python 3,836 669 Updated Nov 6, 2025

byt3bl33d3r / MITMf

Framework for Man-In-The-Middle attacks

Python 3,630 1,040 Updated Aug 28, 2018

secretsquirrel / the-backdoor-factory

Patch PE, ELF, Mach-O binaries with shellcode new version in development, available only to sponsors

Python 3,415 786 Updated Oct 30, 2023

swisskyrepo / SSRFmap

Automatic SSRF fuzzer and exploitation tool

Python 3,395 555 Updated Sep 4, 2025

skelsec / pypykatz

Mimikatz implementation in pure Python

Python 3,163 408 Updated Sep 18, 2025

nil0x42 / phpsploit

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Python 2,398 469 Updated May 6, 2024

This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

Python 2,289 428 Updated Aug 22, 2025

p0dalirius / Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

Python 2,126 207 Updated Sep 5, 2025

D4Vinci / Cr3dOv3r

Know the dangers of credential reuse attacks.

Python 2,074 411 Updated Oct 14, 2024

CravateRouge / bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Python 1,978 191 Updated Oct 29, 2025

s0md3v / ReconDog

Reconnaissance Swiss Army Knife

Python 1,974 348 Updated Jan 26, 2021

s0md3v / Hash-Buster

Crack hashes in seconds.

Python 1,846 409 Updated Dec 10, 2024

byt3bl33d3r / DeathStar

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive …

Python 1,614 328 Updated Jan 23, 2024

Mr-Un1k0d3r / PowerLessShell

Run PowerShell command without invoking powershell.exe

Python 1,522 255 Updated Mar 23, 2023

Mr-Un1k0d3r / DKMC

DKMC - Dont kill my cat - Malicious payload evasion tool

Python 1,412 291 Updated Jul 20, 2020

jonluca / Anubis

Subdomain enumeration and information gathering tool

Python 1,350 166 Updated Jul 23, 2025

byt3bl33d3r / gcat

A PoC backdoor that uses Gmail as a C&C server

Python 1,341 424 Updated Nov 16, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ssssanr

Achievements

Achievements

Block or report ssssanr

Starred repositories

hacksider / Deep-Live-Cam

swisskyrepo / PayloadsAllTheThings

encode / httpx

s0md3v / XSStrike

wifiphisher / wifiphisher

maurosoria / dirsearch

OWASP / mastg