rafi693

A-Red-Teamer-diaries

Red_teaming/Pentesting notes and experiments for a real world engagements

Awesome-WAF

🔥 Everything awesome about web-application firewalls (WAF).

Bolt

CSRF Scanner

cvelist

Pilot program for CVE submission through GitHub

detect-secrets-server

edex-ui

A cross-platform, customizable science fiction terminal emulator with advanced monitoring & touchscreen support.

eternal_scanner

An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)

iframe-resizer

Keep same and cross domain iFrames sized to their content with support for window/content resizing, in page links, nesting and multiple iFrames

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

KaliRPIVNCSetup

This script will auto setup vncserver in Kali Linux Raspberry Pi 3 and Raspberry Pi Zero W for VNC session

kamerka

Build interactive map of cameras from Shodan

leetcode

LeetCode Problems' Solutions

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

metasploit-payloads

Unified repository for different Metasploit Framework payloads

NETworkManager

A powerful tool for managing networks and troubleshoot network problems!

operative-framework

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

Orbit

Blockchain Transactions Investigation Tool

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

PhoneInfoga

Advanced information gathering & OSINT tool for phone numbers

ptf

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

Quark

Quark is a data visualization framework.

resource_files

mosquito - Automating reconnaissance and brute force attacks

RPI-Tor-Wireless-Hotspot

PiFiTorAP is simple bash script for configure your Raspberry Pi 3 B/B+ as an Anonymous WiFi Hotspot.

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

singularity

A DNS rebinding attack framework.

social-engineer-toolkit

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

spiderfoot

SpiderFoot, the most complete OSINT collection and reconnaissance tool.

wpscan

WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.

XSpear

Powerfull XSS Scanning and Parameter Analysis tool&gem

zphisher

Automated Phishing Tool