sebdivinity's Stars
coder/code-server
VS Code in the browser
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
sqlmapproject/sqlmap
Automatic SQL injection and database takeover tool
hashcat/hashcat
World's fastest and most advanced password recovery utility
trufflesecurity/trufflehog
Find, verify, and analyze leaked credentials
java-decompiler/jd-gui
A standalone Java Decompiler GUI
jpillora/chisel
A fast TCP/UDP tunnel over HTTP
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
ffuf/ffuf
Fast web fuzzer written in Go
cheat/cheat
cheat allows you to create and view interactive cheatsheets on the command-line. It was designed to help remind *nix system administrators of options for commands that they use frequently, but not frequently enough to remember.
major/MySQLTuner-perl
MySQLTuner is a script written in Perl that will assist you with your MySQL configuration and make recommendations for increased performance and stability.
fuzzdb-project/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
graphql-kit/graphql-voyager
🛰️ Represent any GraphQL API as an interactive graph
lgandx/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
EnableSecurity/wafw00f
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.
Hackplayers/evil-winrm
The ultimate WinRM shell for hacking/pentesting
epinna/weevely3
Weaponized web shell
andrew-d/static-binaries
Various *nix tools built as statically-linked binaries
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
Ekultek/WhatWaf
Detect and bypass web application firewalls and protection systems
m9rco/Genymotion_ARM_Translation
👾👾 Genymotion_ARM_Translation Please enjoy!
SnaffCon/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
kgretzky/pwndrop
Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
Gerenios/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
lucyoa/kernel-exploits
fransr/postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
ernw/static-toolbox
A collection of statically compiled tools like Nmap and Socat.
minos-org/minos-static
static binaries for linux
WithSecureLabs/bitlocker-spi-toolkit
Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.
nullpsifer/cryptosploit