Pinned Repositories
botsql
Bot that uses Atscan and Sqlmap to perform scan and exploit sql vulns
brutecms
Multi-threaded CMS BruteForcer to WordPress, Joomla, Drupal, OpenCart
fastssh
Fast SSH Scan and BruteForcer for most common credentials.
infog
Information Gathering Tool
PAVELOW
PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting proccess with a few other goodies added to aid your fight.
Samurai
Samurai Email Discovery - SED is a email discovery framework that grabs emails via google dork, company name, or domain name.
TheDoc
TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!
welcome
Brief Introduction
OffXec's Repositories
OffXec/TheDoc
TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!
OffXec/Samurai
Samurai Email Discovery - SED is a email discovery framework that grabs emails via google dork, company name, or domain name.
OffXec/infog
Information Gathering Tool
OffXec/brutecms
Multi-threaded CMS BruteForcer to WordPress, Joomla, Drupal, OpenCart
OffXec/fastssh
Fast SSH Scan and BruteForcer for most common credentials.
OffXec/botsql
Bot that uses Atscan and Sqlmap to perform scan and exploit sql vulns
OffXec/metasploit-framework
Metasploit Framework
OffXec/My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
OffXec/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
OffXec/AutoSQLi
An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.
OffXec/BinGoo
BinGoo! A Linux bash based Bing and Google Dorking Tool
OffXec/bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
OffXec/can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
OffXec/commix
Automated All-in-One OS command injection and exploitation tool.
OffXec/dnsenum
dnsenum is a perl script that enumerates DNS information
OffXec/facebash
Facebook Brute Forcer in shellscript using TOR
OffXec/fakey
Lil trollzy bash script.
OffXec/hawkeye
Hawkeye filesystem analysis tool
OffXec/instashell
Multi-threaded Instagram Brute Forcer without password limit
OffXec/JCS
Joomla Vulnerability Component Scanner
OffXec/jexboss
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
OffXec/proxify
A python module for dumping usable proxies.
OffXec/pure-bash-bible
📖 A collection of pure bash alternatives to external processes.
OffXec/relative-url-extractor
A small tool that extracts relative URLs from a file.
OffXec/sqli-labs
SQLI labs to test error based, Blind boolean based, Time based.
OffXec/sqliv
massive SQL injection vulnerability scanner
OffXec/SubOver
A Powerful Subdomain Takeover Tool
OffXec/tweets_analyzer
Tweets metadata scraper & activity analyzer
OffXec/WebGoat.NET
OWASP WebGoat.NET
OffXec/XSStrike
XSS Scanner equipped with powerful fuzzing engine & intelligent payload generator