Common User Passwords Profiler (CUPP)
☆5,772Dec 26, 2025Updated 2 months ago
Alternatives and similar repositories for cupp
Users that are interested in cupp are comparing it to the libraries listed below
Sorting:
- Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can outpu…☆1,959Nov 17, 2025Updated 3 months ago
- CeWL is a Custom Word List Generator☆2,574Feb 20, 2026Updated last week
- A powerful and useful hacker dictionary builder for a brute-force attack☆3,588Dec 5, 2024Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆15,493Updated this week
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆69,062Updated this week
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,759Apr 25, 2024Updated last year
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,842Sep 6, 2023Updated 2 years ago
- E-mails, subdomains and names Harvester - OSINT☆15,703Feb 22, 2026Updated last week
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆19,340Feb 14, 2026Updated 2 weeks ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆12,889Aug 17, 2020Updated 5 years ago
- The ultimate WinRM shell for hacking/pentesting☆5,260Feb 20, 2026Updated last week
- Username tools for penetration testing☆1,329Sep 20, 2024Updated last year
- Fast web fuzzer written in Go☆15,637Apr 24, 2025Updated 10 months ago
- Web application fuzzer☆6,430Jan 21, 2026Updated last month
- Fast subdomains enumeration tool for penetration testers☆10,830Aug 2, 2024Updated last year
- Credentials recovery project☆10,674Sep 18, 2025Updated 5 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,650Jan 5, 2026Updated last month
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆75,488Feb 16, 2026Updated last week
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆6,353Jan 26, 2026Updated last month
- Attack Surface Management Platform☆9,418Feb 15, 2026Updated 2 weeks ago
- Monitor linux processes without root permissions☆5,891Jan 17, 2023Updated 3 years ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,213Aug 7, 2025Updated 6 months ago
- Web path scanner☆14,017Feb 20, 2026Updated last week
- Linux privilege escalation auditing tool☆6,401Feb 19, 2026Updated last week
- A Tool for Domain Flyovers☆5,906May 22, 2022Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,202Jan 27, 2026Updated last month
- Empire is a PowerShell and Python post-exploitation agent.☆7,813Jan 19, 2020Updated 6 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆14,645Oct 6, 2025Updated 4 months ago
- Veil 3.1.X (Check version info in Veil at runtime)☆4,200Oct 9, 2023Updated 2 years ago
- Six Degrees of Domain Admin☆10,550Aug 1, 2025Updated 7 months ago
- A tool to perform Kerberos pre-auth bruteforcing☆3,255Aug 20, 2024Updated last year
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,173May 11, 2023Updated 2 years ago
- A little tool to play with Windows security☆21,281May 11, 2025Updated 9 months ago
- Automated All-in-One OS Command Injection Exploitation Tool☆5,640Feb 22, 2026Updated last week
- Trying to tame the three-headed dog.☆4,893Nov 14, 2025Updated 3 months ago
- This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.☆10,150Sep 29, 2025Updated 5 months ago
- In-depth attack surface mapping and asset discovery☆14,159Feb 22, 2026Updated last week
- Bull's Eye Wordlist Generator - Does your password rely on predictable patterns of accessible info?☆418Jun 23, 2021Updated 4 years ago