pavetheway

followers

following

stars

pavetheway's starred repositories

Signal-Android

A private messenger for Android.

Language:KotlinAGPL-3.025554 897 10829

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT20222 237 2396

gitleaks

Protect and discover secrets using Gitleaks 🔑

Language:GoMIT17582 161 755

trufflehog

Find, verify, and analyze leaked credentials

Language:GoAGPL-3.015875 169 645

Signal-Desktop

A private messenger for Windows, macOS, and Linux.

Language:TypeScriptAGPL-3.014581 428 5848

RustScan

🤖 The Modern Port Scanner 🤖

Language:RustGPL-3.014371 134 248

ffuf

Fast web fuzzer written in Go

Language:GoMIT12409 156 518

Signal-iOS

A private messenger for iOS.

Language:SwiftAGPL-3.010791 377 3229

Signal-Server

Server supporting the Signal Private Messenger applications on Android, Desktop, and iOS

Language:JavaAGPL-3.09178 4020

miller

Miller is like awk, sed, cut, join, and sort for name-indexed data such as CSV, TSV, and tabular JSON

Language:GoNOASSERTION8916 70 659

sliver

Adversary Emulation Framework

Language:GoGPL-3.08332 149 732

httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Language:GoMIT7562 79 614

website-templates

150+ HTML5 Website Templates

Language:JavaScript5057 78 19

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Language:PythonCC-BY-4.04790 126 236

pacu

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Language:PythonBSD-3-Clause4337 110 129

LinkFinder

A python script that finds endpoints in JavaScript files

Language:PythonMIT3663 66 81

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

Language:PythonBSD-3-Clause2920 75 106

windows_hardening

HardeningKitty and Windows Hardening Settings

Language:PowerShellMIT2335 72 60

subjack

Subdomain Takeover tool written in Go

Language:GoApache-2.01895 48 63

stratus-red-team

:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

Language:GoApache-2.01784 36 185

shuffledns

MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering and easy input-output support.

Language:GoGPL-3.01303 37 80

TeamFiltration

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Language:C#GPL-3.01041 11 39

DumpsterDiver

Tool to search secrets in various filetypes.

Language:PythonMIT976 31 13

jdwp-shellifier

Language:PythonMIT818 50 6

pdtm

ProjectDiscovery's Open Source Tool Manager

Language:GoMIT715 20 65

Spray365

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

Language:PythonMIT340 8 9

wpa_sycophant

Evil client portion of EAP relay attack

Language:CNOASSERTION188 13 5

edge

Recon tool for cloud provider attribution. Supports AWS, Azure, Google, Cloudflare, and Digital Ocean.

Language:GoNOASSERTION157 6 14

Omnispray

Modular Enumeration and Password Spraying Framework

Language:Python105 1 1

dockerfiles

Language:Dockerfile3 10