GrayHats

btctalkint

bitcointalk.org intelligence scraping data

DNSenum

Bash script for DNS Enumeration.

gh-specchio

mirroring gh repos

Shr3dKit

Red Team Tool Kit

Atlas

Quick SQLMap Tamper Suggester

awesome-malware-analysis

A curated list of awesome malware analysis tools and resources.

Exploits

fuzz.txt

Potentially dangerous files

Galileo

Galileo - Web Application Audit Framework

hcxdumptool

Small tool to capture packets from wlan devices.

libSSH-Authentication-Bypass

Spawn to shell without any credentials by using CVE-2018-10933

Modlishka

Modlishka. Reverse Proxy. Phishing NG.

nishang

Nishang - Offensive PowerShell for penetration testing and offensive security.

OSINT-JUMP

开源情报收集 导航及快速跳转的油候脚本

Phishing-API

Easy Web Deployment API for Phishing During Pentest Engagements. Clone sites or Generate Maldocs for Hash and Credential Stealing. Real-time Notifications via Slack!

pure-bash-bible

📖 A collection of pure bash alternatives to external processes.

pwc

Papers with code. Sorted by stars. Updated weekly.

Red-Team-Infrastructure-Wiki

Wiki to collect Red Team infrastructure hardening resources

red_team_telemetry

remediatetheflag

RTF is an open source Practical AppSec Training platform.

richelieu

List of the most common French passwords

security-checklist

A checklist for staying safe on the internet

shellver

site

sn0int

Semi-automatic OSINT framework and package manager

snallygaster

Tool to scan for secret files on HTTP servers

TIDoS-Framework

The Offensive Manual Web Application Penetration Testing Framework.

webshells

XSRFProbe

The Prime Cross Site Request Forgery Audit and Exploitation Toolkit.

xsser

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.