Beast code in Giters

sgmnt-qzh's starred repositories

Hacker-Scripts

POWER(SHELL) ALL THE THINGS!

Language:PowerShell3000

ffuf

Fast web fuzzer written in Go

Language:GoMIT1270400

PEASS-ng

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Language:C#NOASSERTION1612200

Burp-Hunter

XSS Hunter Burp Plugin

Language:JavaGPL-3.014800

Sudomy

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Language:ShellMIT201300

EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Language:PythonGPL-3.0499100

aquatone

A Tool for Domain Flyovers

Language:GoMIT564300

amass

In-depth attack surface mapping and asset discovery

Language:GoNOASSERTION1207700

GTFOBins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Language:HTMLGPL-3.01090300

LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks

Language:ShellMIT703600

lgtm

LGTM is a simple pull request approval system [ARCHIVE]

Language:GoApache-2.098800

archerysec

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

Language:JavaScriptGPL-3.0229500

PatrowlManager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

Language:HTMLAGPL-3.062500

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Language:JavaApache-2.0168000

EventFinder2

Finds event logs between two time points. Useful for helpdesk/support/malware analysis.

Language:C#GPL-3.04300

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT6137800

zaproxy

The ZAP by Checkmarx Core project

Language:JavaApache-2.01274800

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

Language:PHP824500

ActiveScanPlusPlus

ActiveScan++ Burp Suite Plugin

Language:PythonApache-2.058500

XSStrike

Most advanced XSS scanner.

Language:PythonGPL-3.01337700

xsshunter

The XSS Hunter service - a portable version of XSSHunter.com

Language:JavaScriptMIT149100

p0wny-shell

Single-file PHP shell

Language:PHPWTFPL218600

b374k

PHP Webshell with handy features

Language:CSSMIT239900

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

Language:PHPMIT5856300

Sublist3r

Fast subdomains enumeration tool for penetration testers

Language:PythonGPL-2.0988000

sgmnt-qzh