Radhakrishnan Ravichandran's repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Amass
In-depth Attack Surface Mapping and Asset Discovery
ASVS
Application Security Verification Standard
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
awesome-web-security
🐶 A curated list of Web Security materials and resources.
BlackPhish
:trident: [ Phishing Made Easy ] :trident: (In Beta)
caldera
Automated Adversary Emulation Platform
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
evil-winrm
The ultimate WinRM shell for hacking/pentesting
ffuf
Fast web fuzzer written in Go
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
gophish
Open-Source Phishing Toolkit
king-phisher
Phishing Campaign Toolkit
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
Nettacker
Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
sherlock
🔎 Hunt down social media accounts by username across social networks
Sn1per
Attack Surface Management Platform | Sn1perSecurity LLC
SniperPhish
SniperPhish - The Web-Email Spear Phishing Toolkit
TheFatRat
Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .
Top10
Official OWASP Top 10 Document Repository
wpscan
WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
zaproxy
The OWASP ZAP core project
zphisher
An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !