owasp-amass / amass

Related projects: ⓘ

• projectdiscovery / subfinder
  Fast passive subdomain enumeration tool.
  ☆9,963Updated this week
• ffuf / ffuf
  Fast web fuzzer written in Go
  ☆12,270Updated 2 months ago
• OJ / gobuster
  Directory/File, DNS and VHost busting tool written in Go
  ☆9,580Updated last week
• j3ssie / osmedeus
  A Workflow Engine for Offensive Security
  ☆5,269Updated 3 months ago
• aboul3la / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆9,679Updated last month
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,604Updated 2 years ago
• projectdiscovery / nuclei
  Fast and customizable vulnerability scanner based on simple YAML based DSL.
  ☆19,931Updated this week
• 1N3 / Sn1per
  Attack Surface Management Platform
  ☆7,936Updated last month
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆4,905Updated last month
• peass-ng / PEASS-ng
  PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
  ☆15,744Updated this week
• xmendez / wfuzz
  Web application fuzzer
  ☆5,866Updated last month
• hakluke / hakrawler
  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
  ☆4,417Updated 7 months ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆4,756Updated last week
• infosecn1nja / Red-Teaming-Toolkit
  This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
  ☆8,959Updated 2 weeks ago
• GTFOBins / GTFOBins.github.io
  GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
  ☆10,628Updated 3 weeks ago
• fortra / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆13,291Updated 2 weeks ago
• laramies / theHarvester
  E-mails, subdomains and names Harvester - OSINT
  ☆11,100Updated this week
• pry0cc / axiom
  The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, f…
  ☆3,983Updated last month
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,122Updated 2 months ago
• BishopFox / sliver
  Adversary Emulation Framework
  ☆8,239Updated this week
• byt3bl33d3r / CrackMapExec
  A swiss army knife for pentesting networks
  ☆8,355Updated 9 months ago
• kgretzky / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆10,634Updated 3 weeks ago
• rebootuser / LinEnum
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆6,938Updated last year
• DominicBreuker / pspy
  Monitor linux processes without root permissions
  ☆4,854Updated last year
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,839Updated last month
• sullo / nikto
  Nikto web server scanner
  ☆8,336Updated last week
• ticarpi / jwt_tool
  A toolkit for testing, tweaking and cracking JSON Web Tokens
  ☆5,282Updated last month
• maurosoria / dirsearch
  Web path scanner
  ☆11,866Updated last month
• projectdiscovery / httpx
  httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
  ☆7,478Updated this week
• epi052 / feroxbuster
  A fast, simple, recursive content discovery tool written in Rust.
  ☆5,790Updated this week