projectdiscovery / cvemap

Related projects: ⓘ

• Pennyw0rth / NetExec
  The Network Execution Tool
  ☆2,854Updated this week
• nemesida-waf / waf-bypass
  Check your WAF before an attacker does
  ☆1,244Updated last week
• nicocha30 / ligolo-ng
  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
  ☆2,623Updated 3 weeks ago
• Syslifters / sysreptor
  Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
  ☆1,358Updated last week
• swisskyrepo / InternalAllTheThings
  Active Directory and Internal Pentest Cheatsheets
  ☆869Updated this week
• h4r5h1t / webcopilot
  An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for …
  ☆1,038Updated 2 months ago
• Orange-Cyberdefense / GOAD
  game of active directory
  ☆5,047Updated this week
• lefayjey / linWinPwn
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆1,796Updated 2 months ago
• projectdiscovery / uncover
  Quickly discover exposed hosts on the internet using multiple search engines.
  ☆2,374Updated this week
• Orange-Cyberdefense / arsenal
  Arsenal is just a quick inventory and launcher for hacking programs
  ☆3,152Updated last month
• matro7sh / BypassAV
  This map lists the essential techniques to bypass anti-virus and EDR
  ☆2,296Updated 9 months ago
• PhonePe / mantis
  Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
  ☆810Updated 2 months ago
• r0oth3x49 / ghauri
  An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
  ☆2,951Updated 3 weeks ago
• psiinon / open-source-web-scanners
  A list of open source web security scanners
  ☆861Updated last week
• stark0de / nginxpwner
  Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.
  ☆1,436Updated 6 months ago
• six2dez / OneListForAll
  Rockyou for web fuzzing
  ☆2,550Updated 3 weeks ago
• onhexgroup / Conferences
  Conference presentation slides
  ☆1,442Updated last month
• freelabz / secator
  secator - the pentester's swiss knife
  ☆786Updated this week
• xaitax / SploitScan
  SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.
  ☆892Updated 2 weeks ago
• BishopFox / cloudfox
  Automating situational awareness for cloud penetration tests.
  ☆1,896Updated last month
• projectdiscovery / naabu
  A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…
  ☆4,618Updated this week
• trickest / wordlists
  Real-world infosec wordlists, updated regularly
  ☆1,350Updated this week
• projectdiscovery / interactsh
  An OOB interaction gathering server and client library
  ☆3,322Updated this week
• t3l3machus / toxssin
  An XSS exploitation command-line interface and payload generator.
  ☆1,233Updated last month
• fin3ss3g0d / evilgophish
  evilginx3 + gophish
  ☆1,610Updated 3 months ago
• aress31 / burpgpt
  A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities …
  ☆1,973Updated 3 months ago
• SpecterOps / BloodHound
  Six Degrees of Domain Admin
  ☆1,044Updated this week
• edoardottt / cariddi
  Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more
  ☆1,489Updated last month
• caido / caido
  🚀 Caido releases, wiki and roadmap
  ☆1,070Updated this week
• mazen160 / secrets-patterns-db
  Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.
  ☆1,010Updated 7 months ago