Common User Passwords Profiler (CUPP)
☆5,819Dec 26, 2025Updated 2 months ago
Alternatives and similar repositories for cupp
Users that are interested in cupp are comparing it to the libraries listed below
Sorting:
- Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can outpu…☆1,969Nov 17, 2025Updated 4 months ago
- CeWL is a Custom Word List Generator☆2,597Feb 20, 2026Updated last month
- A powerful and useful hacker dictionary builder for a brute-force attack☆3,590Dec 5, 2024Updated last year
- SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in …☆69,539Updated this week
- Username tools for penetration testing☆1,341Sep 20, 2024Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆15,560Updated this week
- A swiss army knife for pentesting networks☆9,100Dec 6, 2023Updated 2 years ago
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆7,860Sep 6, 2023Updated 2 years ago
- PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)☆19,539Updated this week
- E-mails, subdomains and names Harvester - OSINT☆15,824Mar 13, 2026Updated last week
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆9,802Apr 25, 2024Updated last year
- PowerSploit - A PowerShell Post-Exploitation Framework☆12,912Aug 17, 2020Updated 5 years ago
- Bull's Eye Wordlist Generator - Does your password rely on predictable patterns of accessible info?☆417Jun 23, 2021Updated 4 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆76,106Updated this week
- Fast web fuzzer written in Go☆15,750Apr 24, 2025Updated 10 months ago
- Fast subdomains enumeration tool for penetration testers☆10,855Aug 2, 2024Updated last year
- Web application fuzzer☆6,445Jan 21, 2026Updated 2 months ago
- Monitor linux processes without root permissions☆5,927Mar 1, 2026Updated 2 weeks ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆6,383Jan 26, 2026Updated last month
- Credentials recovery project☆10,725Sep 18, 2025Updated 6 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,660Jan 5, 2026Updated 2 months ago
- RSMangler will take a wordlist and perform various manipulations on it similar to those done by John the Ripper with a few extras.☆231Jul 24, 2019Updated 6 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆14,721Oct 6, 2025Updated 5 months ago
- Linux privilege escalation auditing tool☆6,420Feb 19, 2026Updated last month
- Attack Surface Management Platform☆9,466Feb 15, 2026Updated last month
- Web path scanner☆14,084Updated this week
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,218Aug 7, 2025Updated 7 months ago
- A little tool to play with Windows security☆21,334May 11, 2025Updated 10 months ago
- Veil 3.1.X (Check version info in Veil at runtime)☆4,211Oct 9, 2023Updated 2 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,828Jan 19, 2020Updated 6 years ago
- A tool to perform Kerberos pre-auth bruteforcing☆3,279Aug 20, 2024Updated last year
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,237Jan 27, 2026Updated last month
- A Tool for Domain Flyovers☆5,912May 22, 2022Updated 3 years ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,179May 11, 2023Updated 2 years ago
- Trying to tame the three-headed dog.☆4,920Nov 14, 2025Updated 4 months ago
- In-depth attack surface mapping and asset discovery☆14,256Mar 13, 2026Updated last week
- Six Degrees of Domain Admin☆10,558Mar 2, 2026Updated 2 weeks ago
- Most advanced XSS scanner.☆14,822Apr 26, 2025Updated 10 months ago
- The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.☆14,683Oct 21, 2024Updated last year