infobyte / faraday
Open Source Vulnerability Management Platform
☆4,871Updated this week
Related projects: ⓘ
- Automated All-in-One OS Command Injection Exploitation Tool.☆4,513Updated this week
- A swiss army knife for pentesting networks☆8,355Updated 9 months ago
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,412Updated 3 weeks ago
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,425Updated this week
- Attack Surface Management Platform☆7,936Updated last month
- The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.☆5,089Updated 3 weeks ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,461Updated 4 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆4,905Updated last month
- Advanced vulnerability scanning with Nmap NSE☆3,444Updated last week
- Empire is a PowerShell and Python post-exploitation agent.☆7,402Updated 4 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,176Updated last month
- Six Degrees of Domain Admin☆9,744Updated 2 months ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,340Updated last week
- Web application fuzzer☆5,866Updated last month
- A Tool for Domain Flyovers☆5,604Updated 2 years ago
- Next generation web scanner☆5,448Updated 2 months ago
- Nishang - Offensive PowerShell for red team, penetration testing and offensive security.☆8,663Updated 4 months ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,263Updated 2 weeks ago
- NSE script based on Vulners.com API☆3,192Updated 5 months ago
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,538Updated 8 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,636Updated 2 years ago
- Linux privilege escalation auditing tool☆5,558Updated 7 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,146Updated 10 months ago
- Network Infrastructure Penetration Testing Tool☆1,608Updated 3 years ago
- Impacket is a collection of Python classes for working with network protocols.☆13,291Updated 2 weeks ago
- Git All the Payloads! A collection of web attack payloads.☆3,596Updated last year
- Wiki to collect Red Team infrastructure hardening resources☆4,098Updated 5 months ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆3,938Updated last year
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,522Updated last year
- Scripted Local Linux Enumeration & Privilege Escalation Checks☆6,938Updated last year