Topic: pentest Goto Github
Some thing interesting about pentest
Some thing interesting about pentest
pentest,A curated list of awesome OSCP resources
User: 0x4d31
pentest,Tools and Techniques for Red Team / Penetration Testing
User: a-poc
pentest,An automated e-mail OSINT tool
User: alpkeskin
pentest,A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
User: arainho
pentest,:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
User: ascotbe
Home Page: http://kernelhub.ascotbe.com/
pentest,🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
User: christophetd
Home Page: https://blog.christophetd.fr/bypassing-cloudflare-using-internet-wide-scan-data/
pentest,Collection of the cheat sheets useful for pentesting
User: coreb1t
pentest,SSRF (Server Side Request Forgery) testing resources
User: cujanovic
pentest,All about bug bounty (bypasses, payloads, and etc)
User: daffainfo
pentest,A fast, simple, recursive content discovery tool written in Rust.
User: epi052
Home Page: https://epi052.github.io/feroxbuster/
pentest,ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Organization: ffffffff0x
Home Page: https://home.ffffffff0x.com/
pentest,The ultimate WinRM shell for hacking/pentesting
Organization: hackplayers
pentest,Program for determining types of files for Windows, Linux and MacOS.
User: horsicq
Home Page: http://ntinfo.biz
pentest,One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
User: ihebski
pentest,This challenge is Inon Shkedy's 31 days API Security Tips.
User: inonshk
pentest,溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
User: isafeblue
pentest,K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
User: k8gege
pentest,Ladon大型内网渗透工具,可PowerShell模块化、可CS插件化、可内存加载,无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell,支持批量A段/B段/C段以及跨网段扫描,支持URL、主机、域名列表扫描等。Ladon 12.2内置262个功能,网络资产探测模块32个通过多种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exchange\mssql\FTP\RDP)以及方法快速获取目标网络存活主机IP、计算机名、工作组、共享资源、网卡地址、操作系统版本、网站、子域名、中间件、开放服务、路由器、交换机、数据库、打印机等信息,高危漏洞检测16个含MS17010、Zimbra、Exchange
User: k8gege
Home Page: http://k8gege.org/Ladon/
pentest,Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
User: lanjelot
pentest,Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
User: lcvvvv
pentest,Awesome Node.js Security resources
User: lirantal
pentest,Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
User: m0rtem
pentest,A list of resources for those interested in getting started in bug bounties
User: nahamsec
pentest, A curated list of awesome infosec courses and training resources.
User: onlurking
pentest,The Network Execution Tool
Organization: pennyw0rth
Home Page: https://netexec.wiki/
pentest,Pentest Report Generator
Organization: pwndoc
Home Page: https://pwndoc.github.io/pwndoc
pentest,API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Organization: qeeqbox
pentest,A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
User: rewardone
pentest,linux-kernel-exploits Linux平台提权漏洞集合
Organization: secwiki
pentest,windows-kernel-exploits Windows平台提权漏洞集合
Organization: secwiki
pentest,macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.
User: sevagas
Home Page: https://blog.sevagas.com
pentest,reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
User: six2dez
pentest,Applied offensive security with Rust - https://kerkour.com/black-hat-rust
Organization: skerkour
Home Page: https://kerkour.com/black-hat-rust
pentest,Snoop — инструмент разведки на основе открытых данных (OSINT world)
User: snooppr
Home Page: https://github.com/snooppr/snoop/releases
pentest,A collection of hacking tools, resources and references to practice ethical hacking.
User: sundowndev
pentest,A list of useful payloads and bypass for Web Application Security and Pentest/CTF
User: swisskyrepo
Home Page: https://swisskyrepo.github.io/PayloadsAllTheThings/
pentest,Automatic SSRF fuzzer and exploitation tool
User: swisskyrepo
pentest,Villain is a high level stage 0/1 C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities) and share them among connected sibling servers (Villain instances running on different machines).
User: t3l3machus
pentest,A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges on the system, essentially allowing a regular user to execute commands as the root user.
User: th3xace
pentest,Phishing Tool & Information Collector
Organization: undeadsec
pentest,Next generation web scanner
User: urbanadventurer
Home Page: https://www.morningstarsecurity.com/research/whatweb
pentest,Penetration tests guide based on OWASP including test cases, resources and examples.
User: voorivex
pentest,A Security Tool for Bug Bounty, Pentest and Red Teaming.
User: zan8in
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.