charsetinspect by hack-all-the-things
A script that inspects multi-byte character sets looking for characters with specific user-defined properties
updated at Oct. 5, 2024, 12:43 p.m.
Reverse-Shell-Manager by WangYihang
A multiple reverse shell session/client manager via terminal
updated at Oct. 24, 2024, 1:25 p.m.
JoomlaScan by drego85
A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.
updated at Oct. 30, 2024, 2:38 a.m.
plasma by plasma-disassembler
Plasma is an interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax.
updated at Nov. 6, 2024, 6:42 a.m.
ntlm_challenger by b17zr
Parse NTLM challenge messages over HTTP and SMB
updated at Nov. 8, 2024, 3:06 a.m.
domain_analyzer by eldraco
Analyze the security of any domain by finding all the information possible. Made in python.
updated at Nov. 11, 2024, 9:15 p.m.
LinkFinder by GerbenJavado
A python script that finds endpoints in JavaScript files
updated at Nov. 14, 2024, 3:15 p.m.
JShell by UltimateHackers
JShell - Get a JavaScript shell with XSS.
updated at Nov. 15, 2024, 7:57 a.m.
cloudgoat by RhinoSecurityLabs
CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
updated at Nov. 15, 2024, 5:45 p.m.
TIDoS-Framework by theInfectedDrake
The Offensive Manual Web Application Penetration Testing Framework.
updated at Nov. 16, 2024, 12:12 a.m.
snallygaster by hannob
Tool to scan for secret files on HTTP servers
updated at Nov. 16, 2024, 10:48 a.m.
subDomainsBrute by lijiejie
A fast sub domain brute tool for pentesters
updated at Nov. 16, 2024, 12:06 p.m.
Astra by flipkart-incubator
Automated Security Testing For REST API's
updated at Nov. 16, 2024, 1:22 p.m.