tjsquishface's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
rapid7/metasploit-framework
Metasploit Framework
sqlmapproject/sqlmap
Automatic SQL injection and database takeover tool
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
gentilkiwi/mimikatz
A little tool to play with Windows security
PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
beefproject/beef
The Browser Exploitation Framework Project
apenwarr/sshuttle
Wrong project! You should head over to http://github.com/sshuttle/sshuttle
byt3bl33d3r/CrackMapExec
A swiss army knife for pentesting networks
hslatman/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
meirwah/awesome-incident-response
A curated list of tools for incident response
misterch0c/shadowbroker
The Shadow Brokers "Lost In Translation" leak
huntergregal/mimipenguin
A tool to dump the login password from the current linux user
netbiosX/Checklists
Red Teaming & Pentesting checklists for various engagements
joaomatosf/jexboss
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
sensepost/mana
*DEPRECATED* mana toolkit for wifi rogue AP attacks and MitM
GhostPack/KeeThief
Methods for attacking KeePass 2.X databases, including extracting of encryption key material from memory.
EnableSecurity/sipvicious
SIPVicious OSS is a VoIP security testing toolset. It helps security teams, QA and developers test SIP-based VoIP systems and applications. This toolset is useful in simulating VoIP hacking attacks against PBX systems especially through identification, scanning, extension enumeration and password cracking.
Kevin-Robertson/Tater
Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec
tatanus/SPF
SpeedPhishing Framework
darkoperator/Posh-SecMod
PowerShell Module with Security cmdlets for security work
SpiderLabs/ikeforce
SmeegeSec/HashTag
Password Hash Identification
percx/Praeda
praetorian-inc/gladius
Automated Responder/secretsdump.py cracking
WebBreacher/untappdScraper
Script to scrape untappd.com content
NotSoSecure/docker_fetch
Data extraction tool for Docker Registry API
cloudnull/turbolift
If you have found yourself in a situation where you needed to upload, download, delete, modify, or checkout a whole bunch of files/objects, this is what you are looking for. Turbolift is a client which was designed to access Cloud Files - Swift - quickly.
actuated/sslscanalyzer
Shell script for converting an input file containing one or more sslscan results into HTML tables.