kafroc's Stars
rofl0r/proxychains-ng
proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained proxychains project. the sf.net page is currently not updated, use releases from github release page instead.
mitmproxy/mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Audi-1/sqli-labs
SQLI labs to test error based, Blind boolean based, Time based.
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework
beefproject/beef
The Browser Exploitation Framework Project
rapid7/metasploit-framework
Metasploit Framework
lanmaster53/recon-ng
Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
Mebus/cupp
Common User Passwords Profiler (CUPP)
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
aoh/radamsa
a general-purpose fuzzer
santosomar/Probable-Wordlists
Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
OWASP/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
vanhauser-thc/thc-hydra
hydra
openwall/john
John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
maurosoria/dirsearch
Web path scanner
SECFORCE/sparta
Network Infrastructure Penetration Testing Tool
andresriancho/w3af
w3af: web application attack and audit framework, the open source web vulnerability scanner.
sullo/nikto
Nikto web server scanner
slimm609/checksec.sh
Checksec.sh
CiscoCXSecurity/enum4linux
enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts
ElevenPaths/FOCA
Tool to find metadata and hidden information in the documents.
The-Art-of-Hacking/h4cker
This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.
EmpireProject/Empire
Empire is a PowerShell and Python post-exploitation agent.
PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
mandatoryprogrammer/JudasDNS
Nameserver DNS poisoning attacks made easy
OWASP/samm
SAMM stands for Software Assurance Maturity Model.
n1nj4sec/pupy
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
trustedsec/social-engineer-toolkit
The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
robertdavidgraham/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
clpsz/linux-ipcs
Linux进程间通信(Inter-Process Communication)方式汇总