openrasp by baidu

🔥Open source RASP solution

created at Aug. 10, 2017, 11:09 a.m.

109 +0

2,793 +2

601 -1

raven by 0x09AL

raven is a Linkedin information gathering tool that can be used by pentesters to gather information about an organization employees using Linkedin.

created at Aug. 22, 2017, 3:41 p.m.

39 +0

778 +1

163 +0

reverse-shell by lukechilds

Reverse Shell as a Service

created at Sept. 13, 2017, 11:38 a.m.

31 +0

1,852 +0

234 +0

domato by googleprojectzero

DOM fuzzer

created at Sept. 21, 2017, 3:28 p.m.

67 +0

1,695 +9

278 +0

Dockerfiles by espi0n

None

created at Sept. 26, 2017, 3:54 p.m.

5 +0

39 +0

3 +0

FOCA by ElevenPaths

Tool to find metadata and hidden information in the documents.

created at Oct. 2, 2017, 5:05 p.m.

143 +0

2,979 +9

552 +1

GSIL by FeeiCN

GitHub Sensitive Information Leakage（GitHub敏感信息泄露监控）

created at Oct. 11, 2017, 10:14 a.m.

61 +0

2,124 -1

486 +0

Reverse-Shell-Manager by WangYihang

A multiple reverse shell session/client manager via terminal

created at Oct. 23, 2017, 1:41 a.m.

8 +0

238 +0

66 +0

uxss-db by Metnew

🔪Browser logic vulnerabilities :skull_and_crossbones:

created at Oct. 27, 2017, 5:32 p.m.

35 +0

688 +0

90 +0

BadLibrary by SecureSkyTechnology

vulnerable web application for training

created at Dec. 13, 2017, 6:43 a.m.

19 +0

58 +0

7 +0

bXSS by LewisArdern

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

created at Dec. 13, 2017, 11:49 p.m.

14 +0

518 +5

64 +0

dirhunt by Nekmo

Find web directories without bruteforce

created at Jan. 5, 2018, 1:05 a.m.

33 +0

1,770 +5

255 +0

Astra by flipkart-incubator

Automated Security Testing For REST API's

created at Jan. 10, 2018, 11:56 a.m.

86 +0

2,512 +6

402 +1

gitleaks by gitleaks

Protect and discover secrets using Gitleaks 🔑

created at Jan. 27, 2018, 6:19 p.m.

163 +0

17,953 +114

1,469 +6

tinfoleak by vaguileradiaz

The most complete open-source tool for Twitter intelligence analysis

created at Jan. 27, 2018, 7:03 p.m.

73 +0

1,932 +3

270 +1

cssInjection by dxa4481

Stealing CSRF tokens with CSS injection (without iFrames)

created at Feb. 4, 2018, 4:09 a.m.

15 +0

318 +0

48 +0

CSS-Keylogging by maxchehab

Chrome extension and Express server that exploits keylogging abilities of CSS.

created at Feb. 20, 2018, 6:19 p.m.

97 +0

3,216 +1

432 +0

JShell by UltimateHackers

JShell - Get a JavaScript shell with XSS.

created at Feb. 26, 2018, 1:40 p.m.

24 +0

511 +2

137 +0

AwesomeXSS by UltimateHackers

Awesome XSS stuff

created at March 11, 2018, 2:35 p.m.

239 +0

4,786 +6

767 +1

Photon by UltimateHackers

Incredibly fast crawler designed for OSINT.

created at March 30, 2018, 7:38 p.m.

325 +1

11,061 +26

1,521 +1