NxxN39's Stars
rapid7/metasploit-framework
Metasploit Framework
trufflesecurity/trufflehog
Find and verify secrets
transmission/transmission
Official Transmission BitTorrent client repository
michenriksen/gitrob
Reconnaissance tool for GitHub organizations
rmusser01/Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
NullArray/AutoSploit
Automated Mass Exploiter
jmdugan/blocklists
Shared lists of problem domains people may want to block with hosts files
trustedsec/unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
sa7mon/S3Scanner
Scan for misconfigured S3 buckets across S3-compatible APIs!
ssl/ezXSS
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Srinivas11789/PcapXray
:snowflake: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
649/Memcrashed-DDoS-Exploit
DDoS attack tool for sending forged UDP packets to vulnerable Memcached servers obtained using Shodan API
DanMcInerney/icebreaker
Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment
0xbadjuju/Tokenvator
A tool to elevate privilege with Windows Tokens
google/vsaq
VSAQ is an interactive questionnaire application to assess the security programs of third parties.
dsopas/assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
samdenty/injectify
Perform advanced MiTM attacks on websites with ease 💉
BigNerd95/Chimay-Red
Working POC of Mikrotik exploit from Vault 7 CIA Leaks
hashcat/kwprocessor
Advanced keyboard-walk generator with configureable basechars, keymap and routes
SwiftOnSecurity/SwiftFilter
Exchange Transport rules to detect and enable response to phishing
jcesarstef/dotdotslash
Search for Directory Traversal Vulnerabilities
EdOverflow/megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
rmusser01/Cheatsheets
Penetration Testing/Security Cheatsheets
wick2o/gitDigger
hadynz/xss-keylogger
A keystroke logger to exploit XSS vulnerabilities in a site - for my personal Educational purposes only
k4m4/dcipher
Decipher hashes using online rainbow & lookup table attack services.
iH8sn0w/iBoot32Patcher
A Universal 32-bit iBoot patcher for iPhone OS 2.0 --> iOS 10
TheM4hd1/PenCrawLer
An Advanced Web Crawler and DirBuster
xajkep/xpt
XPT - XSS Polyglot Tester
cellebrited/cellebrite