tinfoleak by vaguileradiaz

The most complete open-source tool for Twitter intelligence analysis

updated at May 24, 2024, 9:21 a.m.

72 +0

1,902 +1

273 +0

tplmap by epinna

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

updated at May 24, 2024, 11:32 a.m.

84 +0

3,647 +2

660 -1

dirhunt by Nekmo

Find web directories without bruteforce

updated at May 24, 2024, 2:28 p.m.

35 +0

1,714 +3

237 +1

social_mapper by Greenwolf

A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)

updated at May 24, 2024, 4:48 p.m.

227 +0

3,705 +6

785 +0

GSIL by FeeiCN

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

updated at May 24, 2024, 5:47 p.m.

62 +0

2,110 +0

486 +0

Raccoon by evyatarmeged

A high performance offensive security tool for reconnaissance and vulnerability scanning

updated at May 24, 2024, 6:11 p.m.

109 +0

3,015 +7

391 +1

weevely3 by epinna

Weaponized web shell

updated at May 24, 2024, 7:57 p.m.

132 +0

3,095 +9

599 +1

plasma by plasma-disassembler

Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.

updated at May 24, 2024, 8:38 p.m.

149 +0

3,042 +0

278 +0

ReconDog by UltimateHackers

Reconnaissance Swiss Army Knife

updated at May 25, 2024, 12:38 a.m.

82 +0

1,717 +2

335 +0

subDomainsBrute by lijiejie

A fast sub domain brute tool for pentesters

updated at May 25, 2024, 8:09 a.m.

116 +0

3,392 +4

1,009 +0

commix by commixproject

Automated All-in-One OS Command Injection Exploitation Tool.

updated at May 25, 2024, 7:32 p.m.

162 +1

4,368 +10

796 +0

prowler by prowler-cloud

Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

updated at May 25, 2024, 9:08 p.m.

117 -2

9,692 +28

1,408 +1

mitmproxy by mitmproxy

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

updated at May 25, 2024, 10:21 p.m.

623 +0

34,681 +83

3,913 +5

LinkFinder by GerbenJavado

A python script that finds endpoints in JavaScript files

updated at May 26, 2024, 12:19 a.m.

63 +0

3,492 +16

584 +3

wfuzz by xmendez

Web application fuzzer

updated at May 26, 2024, 1:44 a.m.

168 +0

5,683 +8

1,332 +0

sqlmap by sqlmapproject

Automatic SQL injection and database takeover tool

updated at May 26, 2024, 2:18 a.m.

1,090 -1

30,810 +56

5,557 +3

EyeWitness by RedSiege

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

updated at May 26, 2024, 2:34 a.m.

146 -1

4,756 +13

820 +0

Sublist3r by aboul3la

Fast subdomains enumeration tool for penetration testers

updated at May 26, 2024, 2:39 a.m.

233 +0

9,341 +23

2,056 +2

cloudgoat by RhinoSecurityLabs

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

updated at May 26, 2024, 6:21 a.m.

71 +0

2,781 +6

580 +0

Photon by UltimateHackers

Incredibly fast crawler designed for OSINT.

updated at May 26, 2024, 6:29 a.m.

322 +0

10,576 +14

1,457 +2