Pinned Repositories
botsql
Bot that uses Atscan and Sqlmap to perform scan and exploit sql vulns
brutecms
Multi-threaded CMS BruteForcer to WordPress, Joomla, Drupal, OpenCart
fastssh
Fast SSH Scan and BruteForcer for most common credentials.
infog
Information Gathering Tool
PAVELOW
PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting proccess with a few other goodies added to aid your fight.
Samurai
Samurai Email Discovery - SED is a email discovery framework that grabs emails via google dork, company name, or domain name.
TheDoc
TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!
welcome
Brief Introduction
OffXec's Repositories
OffXec/awesome-hacking
A curated list of awesome Hacking tutorials, tools and resources
OffXec/changeme
A default credential scanner.
OffXec/ctf-tools
Some setup scripts for security research tools.
OffXec/Free-Security-eBooks
Free Security and Hacking eBooks
OffXec/owtf
Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp
OffXec/public-pentesting-reports
Curated list of public penetration test reports released by several consulting firms and academic security groups
OffXec/routersploit
Exploitation Framework for Embedded Devices
OffXec/TIDoS-Framework
The Offensive Manual Web Application Penetration Testing Framework.
OffXec/awesome-ctf
A curated list of CTF frameworks, libraries, resources and softwares
OffXec/BabySploit
BabySploit Beginner Pentesting Toolkit/Framework Written in Python
OffXec/bugbounty101
An entry level resource to learning bug bounty.
OffXec/DorkNet
Selenium powered Python script to automate searching for vulnerable web apps.
OffXec/eternal_scanner
An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)
OffXec/EyeWitness
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
OffXec/fuxploider
File upload vulnerability scanner and exploitation tool.
OffXec/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
OffXec/metasploitHelper
metasploitHelper
OffXec/OpenDoor
OWASP WEB Directory Scanner
OffXec/OSCP-Prep
A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
OffXec/OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' Keepnote. Reconscan in scripts folder.
OffXec/parameth
This tool can be used to brute discover GET and POST parameters
OffXec/peda
PEDA - Python Exploit Development Assistance for GDB
OffXec/PenTestKit
Useful tools and scripts used during Penetration Tests.
OffXec/php-static-analysis-tools
A reviewed list of useful PHP static analysis tools
OffXec/SSRFmap
Automatic SSRF fuzzer and exploitation tool
OffXec/super
Secure, Unified, Powerful and Extensible Rust Android Analyzer
OffXec/the-book-of-secret-knowledge
:zap: A collection of awesome lists, manuals, blogs, hacks, one-liners, cli/web tools and more. Especially for System and Network Administrators, DevOps, Pentesters or Security Researchers.
OffXec/V3n0M-Scanner
Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
OffXec/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
OffXec/WS-Attacker
WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr University Bochum (https://nds.rub.de/ ) and the Hackmanit GmbH (https://www.hackmanit.de/).