galoget's Stars
ytdl-org/youtube-dl
Command-line program to download videos from YouTube.com and other video sites
sherlock-project/sherlock
Hunt down social media accounts by username across social networks
WerWolv/ImHex
🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.
sqlmapproject/sqlmap
Automatic SQL injection and database takeover tool
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
twintproject/twint
An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
asciinema/asciinema
Terminal session recorder 📹
wifiphisher/wifiphisher
The Rogue Access Point Framework
shepherd-pro/shepherd
Guide your users through a tour of your app
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
maurosoria/dirsearch
Web path scanner
trustedsec/social-engineer-toolkit
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
digininja/DVWA
Damn Vulnerable Web Application (DVWA)
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
xmendez/wfuzz
Web application fuzzer
Tib3rius/AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
infobyte/faraday
Open Source Vulnerability Management Platform
andresriancho/w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
Arachni/arachni
Web Application Security Scanner Framework
pwndoc/pwndoc
Pentest Report Generator
niklasb/libc-database
Build a database of libc offsets to simplify exploitation
intel/cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
projectdiscovery/nuclei-burp-plugin
Nuclei plugin for BurpSuite
dradis/dradis-ce
Dradis Framework: Collaboration and reporting for IT Security teams
topaz/paste
A no-datastore, client-side paste service.
bokub/nopaste
:clipboard: Client-side paste service
opsxcq/docker-vulnerable-dvwa
Damn Vulnerable Web Application Docker container
jitsi/security-advisories
Security Advisories for the Jitsi projects
Relthdrarxash/SDCTF_2021
Writeups for the San Diego CTF 2021