adamcaudill / yawast

Related projects: ⓘ

• michenriksen / searchpass
  A simple tool for offline searching of default credentials for network devices, web applications and more.
  ☆165Updated 6 years ago
• b3rito / yotter
  yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage
  ☆122Updated 6 years ago
• IOActive / RepoSsessed
  A project designed to parse public source code repositories and find various types of vulnerabilities.
  ☆188Updated 6 years ago
• mubix / cfdb
  Common Findings Database
  ☆100Updated 5 years ago
• JonnyHightower / neet
  Neet - Network Enumeration and Exploitation Tool
  ☆167Updated 7 years ago
• wick2o / gitDigger
  ☆178Updated 10 years ago
• zxsecurity / steamer
  For importing, searching, and managing public password breach data
  ☆154Updated 10 months ago
• kurobeats / pentest-bookmarks
  ☆139Updated this week
• glennzw / shodan-hq-nse
  Shodan HQ nmap plugin - passively scan targets
  ☆150Updated 8 years ago
• JohnTroony / Google-dorks
  ☆99Updated this week
• bindh3x / dnsmap.sh
  ☆55Updated this week
• darryllane / Bluto-Old
  Recon, Subdomain Bruting, Zone Transfers
  ☆227Updated 8 years ago
• danielmiessler / egression
  Test a network's egress controls with various levels of success and failure.
  ☆101Updated 2 years ago
• tintinweb / striptls
  proxy poc implementation of STARTTLS stripping attacks
  ☆166Updated 2 years ago
• praetorian-inc / mitm-vm
  An easy-to-deploy virtual machine that can provide flexible man-in-the-middle capabilities.
  ☆195Updated 8 years ago
• johndekroon / serializekiller
  Mass scanner for the Java serialize bug
  ☆148Updated 5 years ago
• Rossmairm / PenTools
  This is a bundle of python and bash penetration testing tools for recon and information gathering.
  ☆80Updated 8 years ago
• iamthefrogy / Application-Security
  ☆113Updated this week
• jimywork / certstreamcatcher
  This tool is based on regex with effective standards for detecting phishing sites in real time using certstream and can also detect puny…
  ☆80Updated 5 years ago
• pwnwiki / webappdefaultsdb
  A DB of known Web Application Admin URLS, Username/Password Combos and Exploits
  ☆153Updated 9 years ago
• raesene / TestingScripts
  A More or less Random Collection of Scripts for security Testing.
  ☆63Updated 2 years ago
• pathetiq / BurpSmartBuster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆382Updated 3 years ago
• highmeh / pentest_scripts
  penetration testing scripts
  ☆137Updated 5 years ago
• michenriksen / bucketlist
  Amazon S3 bucket spelunking!
  ☆84Updated 7 years ago
• Matir / pwnableweb
  PwnableWeb is a suite of web applications for use in information security training.
  ☆87Updated 10 years ago
• GoSecure / csp-auditor
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆135Updated 4 years ago
• mschwager / gitem
  A Github organization reconnaissance tool.
  ☆214Updated last year
• bdamele / unix-privesc-check
  Shell script that runs on UNIX systems (tested on Solaris 9, HPUX 11, various Linux distributions, FreeBSD 6.2). It detects misconfigurat…
  ☆85Updated 7 years ago
• cloudtracer / paskto
  Paskto - Passive Web Scanner
  ☆150Updated 5 years ago