Beast code in Giters

Frank Leitner's starred repositories

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT56464 1898 262

dnSpy

.NET debugger and assembly editor

Language:C#26222 9910

ILSpy

.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!

Language:C#21099 714 2387

bash-it

A community Bash framework.

Language:ShellMIT14204 325 634

ffuf

Fast web fuzzer written in Go

Language:GoMIT12133 156 510

LaZagne

Credentials recovery project

Language:PythonLGPL-3.09388 412 471

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Language:PythonNOASSERTION8680 225 85

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

Language:PHP8120 366 153

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Language:JavaMIT7595 213 102

pull

🤖 Keep your forks up-to-date via automated PRs

Language:JavaScriptMIT6062 64 182

wfuzz

Web application fuzzer

Language:PythonGPL-2.05837 169 197

lsyncd

Lsyncd (Live Syncing Daemon) synchronizes local directories with remote targets

Language:LuaGPL-2.05690 188 636

tplmap

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

Language:PythonGPL-3.03714 82 78

waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain

Language:Go3392 65 42

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

Language:C#MIT3147 76 62

smtp4dev

smtp4dev - the fake smtp email server for development and testing

Language:C#BSD-3-Clause2999 63 235

pwndoc

Pentest Report Generator

Language:JavaScriptMIT2185 49 303

genie

A quick way into a systemd "bottle" for WSL

Language:PythonNOASSERTION1853 34 216

SharpUp

SharpUp is a C# port of various PowerUp functionality.

Language:C#NOASSERTION1201 44 5

legion

Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.

Language:PythonGPL-3.01002 43 170

golismero

GoLismero - The Web Knife

Language:PythonGPL-2.0858 86 45

liffy

Local file inclusion exploitation tool

Language:PythonGPL-3.0758 13 15

hashes

Magic hashes – PHP hash "collisions"

687 16 5

WHP

Micro$oft Windows Hacking Pack

Language:PythonWTFPL511 270

Vanquish

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Language:PythonMIT500 40 10

git-clone-init

Automatic setup of user identity (user.email / user.name) on git clone

Language:ShellMIT175 3 2

forward-shell

Language:Python152 4 1

bashdot

Minimalist dotfile management framework.

Language:ShellMIT102 4 2

ruby-shells

Simple forward and reverse shells that can be compiled and used on pen tests to avoid AV and used to get better access.

Language:Ruby28 30

factorio-sites

A mono repo for the factorio-blueprints project.

Language:TypeScriptAGPL-3.023 3 4