KodjoB's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
curl/curl
A command line tool and library for transferring data with URL syntax, supporting DICT, FILE, FTP, FTPS, GOPHER, GOPHERS, HTTP, HTTPS, IMAP, IMAPS, LDAP, LDAPS, MQTT, POP3, POP3S, RTMP, RTMPS, RTSP, SCP, SFTP, SMB, SMBS, SMTP, SMTPS, TELNET, TFTP, WS and WSS. libcurl offers a myriad of powerful features
rapid7/metasploit-framework
Metasploit Framework
zaproxy/zaproxy
The ZAP by Checkmarx Core project
ytisf/theZoo
A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
fuzzdb-project/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
1N3/Sn1per
Attack Surface Management Platform
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent.
urbanadventurer/WhatWeb
Next generation web scanner
Veil-Framework/Veil
Veil 3.1.X (Check version info in Veil at runtime)
trustedsec/unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
achillean/shodan-python
The official Python library for Shodan
codingo/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
rasta-mouse/Sherlock
PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
brandon-rhodes/fopnp
Foundations of Python Network Programming (Apress) — scripts and examples
tennc/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
0xsauby/yasuo
A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
verovaleros/webcrawler
A web crawler oriented to infosec.