security-ronin Goto Github PK

amass

In-depth Attack Surface Mapping and Asset Discovery

brutespray

Brute-Forcing from Nmap output - Automatically attempts default creds on found services.

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

bugbountytoolkit

A multi-platform bug bounty toolkit that can be installed on Debian/Ubuntu or setup with Docker.

empire

Empire is a PowerShell and Python post-exploitation agent.

example

eyewitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

gobuster

Directory/file & DNS busting tool written in Go

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

johntheripper

This is the official repo for John the Ripper, "Jumbo" version. The "bleeding-jumbo" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the "core" version of john this jumbo was based on (or newer) is found in the "master" branch (CVS: https://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/john/john/src/).

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

linenum

Scripted Local Linux Enumeration & Privilege Escalation Checks

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

massdns

A high-performance DNS stub resolver for bulk lookups

nishang

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentest-book

pwndrop

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

recon_profile

seclists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

sherlock

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

subfinder

Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

tbhm

The Bug Hunters Methodology

testing

test

wordlist

Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.

www-project-web-security-testing-guide

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

z0fcourse_reverseengineering

Reverse engineering focusing on x64 Windows.