Awesome Stars

A curated list of my GitHub stars! Generated by starred.

AutoIt

bustd86/bing-dork-scanner - Bing Dork Scanner and simple sqli-injection checker

Batchfile

massgravel/Microsoft-Activation-Scripts - A Windows and Office activator using HWID / KMS38 / Online KMS activation methods, with a focus on open-source code and fewer antivirus detections.
NirajShr3stha/coffinRDP - You can get unlimited rdp for free.
ZephrFish/WindowsHardeningScript - Some settings stolen from multiple scripts @ZephrFish

BitBake

ehsahil/IntruderPayloads - A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

BlitzBasic

eslam3kl/SQLiDetector - Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for differe
1N3/IntruderPayloads - A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

C

FreeRDP/FreeRDP - FreeRDP is a free remote desktop protocol library and clients
hashcat/hashcat - World's fastest and most advanced password recovery utility
sandboxie-plus/Sandboxie - Sandboxie Plus & Classic
arthepsy/CVE-2021-4034 - PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
AlexeyAB/darknet - YOLOv4 / Scaled-YOLOv4 / YOLO - Neural Networks for Object Detection (Windows and Linux version of Darknet )
SecWiki/windows-kernel-exploits - windows-kernel-exploits Windows平台提权漏洞集合
henrypp/memreduct - Lightweight real-time memory management application to monitor and clean system memory on your computer.
nil0x42/duplicut - Remove duplicates from MASSIVE wordlist, without sorting it (for dictionary-based password cracking)
bhassani/EternalBlueC - EternalBlue suite remade in C/C++ which includes: MS17-010 Exploit, EternalBlue vulnerability detector, DoublePulsar detector and DoublePulsar Shellcode & DLL uploader
USBBios/Joker-Mirai-Botnet-Source-V1 - People have been wanting this Mirai Botnet for awhile now. The Joker Mirai V1 developed by IoTNet himself. This powerful botnet has the basic attack methods for homes, servers, L7, and bypasses. Yes i
gordboy/rtl8812au-5.9.3.2 - Realtek 8812AU driver version 5.9.3.2
cdown/psi-notify - Alert when your machine is becoming oversaturated, before it slows to a crawl
netblue30/firejail - Linux namespaces and seccomp-bpf sandbox
opsxcq/exploit-CVE-2017-7494 - SambaCry exploit and vulnerable container (CVE-2017-7494)
tpruvot/cpuminer-multi - crypto cpuminer (linux + windows)
swiperproxy/swiperproxy - A Python-based HTTP/HTTPS-proxy.
nmap/ncrack - Ncrack network authentication tool
Ranginang67/SQLVuln - Simple tool to scanning sql injection vulnerability, easy to use!!
rofl0r/proxychains-ng - proxychains ng (new generation) - a preloader which hooks calls to sockets in dynamically linked programs and redirects it through one or more socks/http proxies. continuation of the unmaintained prox
csete/gpredict - Gpredict satellite tracking application
sieukrem/jn-npp-plugin - Plugin for Notepad++ allowing you to automate some tasks using JavaScript
dail8859/ElasticTabstops - Elastic Tabstops plugin for Notepad++
superolmo/BigFiles - Notepad++ Plugin for reading large files
sivazozo/hidden-cry - Windows Crypter/Decrypter Generator with AES 256 bits key
greenbone/openvas-scanner - This repository contains the scanner component for Greenbone Community Edition.
alexxy/netdiscover - netdiscover
offensive-security/exploitdb - The official Exploit Database repository
znort987/blockparser - Simple C++ bitcoin blockchain parser
ryancdotorg/brainflayer - A proof-of-concept cracker for cryptocurrency brainwallets and other low entropy key alogrithms.
kulukami/Build-a-Mirai-botnet - Build a Mirai botnet from the source code.
kribesk/security-project-mirai - Running mirai botnet in lab environment
eulo08/Mirai-ioT-Botnet-Source-Code-With-Setup-Guide - https://en.wikipedia.org/wiki/Mirai_(malware) - Source Code for Research Purposes!
xmrig/xmrig - RandomX, KawPow, CryptoNight and GhostRider unified CPU/GPU miner and RandomX benchmark
ruCyberPoison/-Mirai-Iot-BotNet - [Mirai] Mirai Iot Botnet && Tutorial !
jgamblin/Mirai-Source-Code - Leaked Mirai Source Code for Research/IoC Development Purposes
noptrix/lulzbuster - A very fast and smart web directory and file enumeration tool written in C.
vanhoefm/krackattacks-scripts -
e-ago/bitcracker - BitCracker is the first open source password cracking tool for memory units encrypted with BitLocker
zmap/zmap - ZMap is a fast single packet network scanner designed for Internet-wide network surveys.
gentilkiwi/mimikatz - A little tool to play with Windows security
hashcat/hashcat-utils - Small utilities that are useful in advanced password cracking
netdata/netdata - Real-time performance monitoring, done right! https://www.netdata.cloud
cboxdoerfer/fsearch - A fast file search utility for Unix-like systems based on GTK3
nullsecuritynet/tools - Security and Hacking Tools, Exploits, Proof of Concepts, Shellcodes, Scripts.
mohuihui/antispy - AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its
vanhauser-thc/thc-hydra - hydra
openwall/john - John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs
s0lst1c3/eaphammer - Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
miranda-ng/miranda-ng - Miranda NG: Next Generation of Miranda IM
deiv/driftnet - Driftnet watches network traffic, and picks out and displays JPEG and GIF images for display
screetsec/TheFatRat - Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then
rockdaboot/wget2 - The successor of GNU Wget. Contributions preferred at https://gitlab.com/gnuwget/wget2. But accepted here as well 😍

C#

d-edge/Cardidy - A .net library to identify credit card number and cvv
kzorin52/stealerchecker - Работа с логами Echelon, RedLine, Racoon, DCRat etc
swagkarna/Echelon-Stealer - ☣️ Stealer chrome v81+, Firefox v75+, And more than 30 different programs and crypto-wallets
shadowsocks/shadowsocks-windows - A C# port of shadowsocks
Overmiind/Puppeteer-sharp-extra - Plugin framework for PuppeteerSharp
HunnicCyber/SharpML - Machine Learning Network Share Password Hunting Toolkit
UnamSanctam/SilentCryptoMiner - A Silent (Hidden) Free Crypto Miner Builder - Supports ETH, ETC, XMR and many more.
guptaofficial17/Mailify - The Best Mail-Access Checker/Penetesting Tool Ever Made!
Leaked-wiki/throwbin.io-bruteforcer - A small project I made for educational purposes, I wanted to see how small and fast I could make it.
anscripter/UcO - Ultimate Combolist Optimizer
svenmauch/WinSlap - Swiftly configure a fresh Windows 10 installation with useful tweaks and antispy settings.
hellzerg/optimizer - The finest Windows Optimizer
Flangvik/SharpProxyLogon - C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection
ipwnosx/Convert-OpenBullet-Configs-to-Standalone - Convert OpenBullet Configs to Standalone .exe Crackers - Completely Automated + Instant
Viralmaniar/BigBountyRecon - BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
RyuzakiH/CloudflareSolverRe - Cloudflare Javascript & reCaptcha challenge (I'm Under Attack Mode or IUAM) solving / bypass .NET Standard library.
openbullet/OpenBullet2 - OpenBullet reinvented
Rdsmunna/PornHub-checker - Fixed version. Brute/Checker for pornhub.com
Taiizor/MAChanger - MAChanger v1.7
FarisFAhmed/NppDpFormatPlugin - Notepad++ Plugin for Text Formatting
ph09nix/APSoft-Web-Scanner-v2 - Powerful dork searcher and vulnerability scanner for windows platform
syrex1013/RainbowSQL - RainbowSQL is very fast dork&SQL injection scanner.
djhohnstein/SharpChromium - .NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.
Raikia/CredNinja - A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter
KoalaBear84/OpenDirectoryDownloader - Indexes open directories
openbullet/openbullet - The OpenBullet web testing application.
LimerBoy/Adamantium-Thief - 🔑 Decrypt chromium based browsers passwords, cookies, credit cards, history, bookmarks, autofill. Version > 80 is supported.
BornToBeRoot/NETworkManager - A powerful tool for managing networks and troubleshoot network problems!
vivami/SauronEye - Search tool to find specific files containing specific words, i.e. files containing passwords..
sensepost/wikto - Nikto for Windows with some extra features.
ElevenPaths/FOCA - Tool to find metadata and hidden information in the documents.

C++

Genivia/ugrep - 🔍NEW ugrep v3.9: ultra fast grep with interactive TUI, fuzzy search, boolean queries, hexdumps and more: search file systems, source code, text, binary files, archives (cpio/tar/pax/zip), compressed f
JohnHubcr/navicat-keygen - A keygen for Navicat
0x09AL/IIS-Raid - A native backdoor module for Microsoft IIS (Internet Information Services)
0x09AL/RdpThief - Extracting Clear Text Passwords from mstsc.exe using API Hooking.
sqlitebrowser/sqlitebrowser - Official home of the DB Browser for SQLite (DB4S) project. Previously known as "SQLite Database Browser" and "Database Browser for SQLite". Website at:
bruderstein/nppPluginManager - Notepad++ Plugin Manager
brndnmtthws/conky - Light-weight system monitor for X (and other things, too)
kapilratnani/JSON-Viewer - A JSON viewer plugin for Notepad++. Displays the selected JSON string in a tree view.
oviradoi/npp-explorer-plugin - Modified version of the Explorer plugin for Notepad++ that matches its colors with the current theme
Predelnik/DSpellCheck - Notepad++ Spell-checking Plug-in
variar/klogg - Really fast log explorer based on glogg project
viva64/how-to-use-pvs-studio-free - How to use PVS-Studio for Free?
brichard19/BitCrack - A tool for cracking Bitcoin private keys
batchenRothenberg/AllRepair -
Phildo/brutedist - brute forces a list of passwords a short distance based on a seed password
Phildo/expandpass - Implements a simple nested grammar for expanding passwords
nomacs/nomacs - nomacs is a free image viewer for windows, linux, and mac systems.
4ndronicus/keylogger - This is a keylogger. I created it so that I could understand how one could go about detecting keyloggers that may have different behavior. Rather than finding one every time I wanted a particular beha
4ndronicus/remote-access-tool - Remote Access Tool. I created it so that I could understand how one could go about detecting RATs that may have different behavior. Rather than finding one every time I wanted a particular behavior, I
tenable/routeros - RouterOS Security Research Tooling and Proof of Concepts
sepehrdaddev/hashcobra - HashCobra Hash Cracking tool.
UBoat-Botnet/UBoat - HTTP Botnet
kismetwireless/kismet - Github mirror of official Kismet repository
oguzhaninan/Stacer - Linux System Optimizer and Monitoring - https://oguzhaninan.github.io/Stacer-Web
shinnok/netcatgui - NetcatGUI is a simple GUI program that is set to emulate the popular network "swiss army knife" tool netcat (nc) using an easy to use graphical user interface and cross platform availability.
openwall/johnny - GUI frontend to John the Ripper password cracker
DeclanRussell/IntelOIDenoiser - A simple implementation of Intels Open Image denoiser -> https://github.com/OpenImageDenoise/oidn
DeclanRussell/NvidiaAIDenoiser - A simple implementation of Nvidia's AI denoiser

CSS

rmusser01/Infosec_Reference - An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
arifszn/email-scraper - An email scraper made with Node and React.
StylishThemes/GitHub-Dark - Dark GitHub style
ajinabraham/CMSScan - CMS Scanner: Scan Wordpress, Drupal, Joomla, vBulletin websites for Security issues
CPH-SEC/CPH-SEC.github.io - CPH:SEC - Copenhagen Ethical Hacking and Penetration Testing Society
appsecco/breaking-and-pwning-apps-and-servers-aws-azure-training - Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!
thewhiteh4t/seeker - Accurately Locate Smartphones using Social Engineering
UndeadSec/SocialFish - Phishing Tool & Information Collector
hashview/hashview-old - A web front-end for password cracking and analytics
juliocesarfort/public-pentesting-reports - Curated list of public penetration test reports released by several consulting firms and academic security groups

CoffeeScript

FelisCatus/SwitchyOmega - Manage and switch between multiple proxies quickly & easily.

Dart

quickemu-project/quickgui - A Flutter frontend for quickget and quickemu.
filiph/linkcheck - Fast link checker

Dockerfile

mining-containers/xmrig - An up-to-date and easy to use XMRig image for mining Monero on any Docker host including Azure ACI and AWS ECS.
vulhub/vulhub - Pre-Built Vulnerable Environments Based on Docker-Compose
aaaguirrep/offensive-docker - Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Erlang

apache/couchdb - Seamless multi-master syncing database with an intuitive HTTP/JSON API, designed for reliability

Go

random-robbie/firebaseio-checker-go - Firebase url checker in go
hktalent/scan4all - Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
projectdiscovery/httpx - httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library. It is designed to maintain result reliability with an increased number of threads.
rverton/webanalyze - Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
madneal/gshark - Scan for sensitive information easily and effectively.
dstotijn/hetty - An HTTP toolkit for security research.
redhuntlabs/HTTPLoot - An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code of sites.
ferreiraklet/Jeeves - Jeeves SQLI Finder
junkurihara/dnscrypt-proxy-modns - Fork of dnscrypt-proxy to implement a multiple-relay-based DNS anonymization protocol (mu-ODNS)
cloudflare/odoh-client-go - Oblivious DoH client
kitabisa/mubeng - An incredibly fast proxy checker & IP rotator with ease.
R4yGM/dorkscout - DorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets
americanexpress/earlybird - EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
projectdiscovery/uncover - Quickly discover exposed hosts on the internet using multiple search engines.
haydenwoodhead/burner.kiwi - No bullshit temporary mail service written in Go
moonD4rk/HackBrowserData - Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
VirusTotal/vt-cli - VirusTotal Command Line Interface
coj337/pwndb - pwndb is a tool that looks for leaked passwords from a dark web breach database given a user or domain.
glebarez/padre - Blazing fast, advanced Padding Oracle exploit
alpkeskin/mosint - An automated e-mail OSINT tool
dwisiswant0/go-stare - A fast & light web screenshot without headless browser but Chrome DevTools Protocol!
dwisiswant0/cf-check - CloudFlare Checker written in Go
FDlucifer/Proxy-Attackchain - proxylogon, proxyshell, proxyoracle and proxytoken full chain exploit tool
chrisandoryan/Minemole - A simple Cryptojacking malware made with Go and XMRig, for educational purposes only.
Ne0nd0g/merlin - Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
nodauf/GoMapEnum - User enumeration and password bruteforce on Azure, ADFS, OWA, O365, Teams and gather emails on Linkedin
0xsha/ProxyFor - Validate proxies for specific domain
0xsha/CloudBrute - Awesome cloud enumerator
kgretzky/evilginx2 - Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
daffainfo/Key-Checker - Go scripts for checking API key / access token validity
gwen001/github-regexp - Basically a regexp over a GitHub search.
kleiton0x00/ppmap - A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
DNSCrypt/dnscrypt-proxy - dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
hueristiq/hqurlfind3r - A passive reconnaissance tool for known URLs discovery - it gathers a list of URLs passively using various online sources.
lc/gau - Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
projectdiscovery/cloudlist - Cloudlist is a tool for listing Assets from multiple Cloud Providers.
h4x0r-dz/CVE-2021-26855 -
dwisiswant0/proxylogscan - A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).
mdsecactivebreach/o365-attack-toolkit - A toolkit to attack Office365
alexandr-gnrk/Hash-cracker - Brute force program for SHA1, SHA256, SHA512 and MD5.
cckuailong/HackChrome - ⛄ Get the User:Password from Chrome(include version < 80 and version > 80)
assetnote/kiterunner - Contextual Content Discovery Tool
cyberark/kubesploit - Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.
solipsis/walletRecover - Tool to recover legacy blockchain.info wallets
M4DM0e/DirDar - DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
BishopFox/smogcloud - Find cloud assets that no one wants exposed 🔎 ☁️
Narasimha1997/fake-sms - A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like a proxy.
aahmad097/Tritium - Password Spraying Framework
ffuf/ffuf - Fast web fuzzer written in Go
future-architect/vuls - Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
storyicon/golang-proxy - Golang version of proxy mining tool with evaluation system
bettercap/bettercap - The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.
ngirot/BruteForce - A simple brute forcer written in GO for SHA1, SHA256, SHA512, MD5 and bcrypt
schollz/croc - Easily and securely send things from one computer to another 🐊 📦
yashpl/mongoBuster - Hunt Open MongoDB instances
terorie/od-database-crawler - OD-Database Go crawler
stellar/go - Stellar's public monorepo of go code
projectdiscovery/nuclei - Fast and customizable vulnerability scanner based on simple YAML based DSL.
dwisiswant0/go-dork - The fastest dork scanner written in Go.
ropnop/kerbrute - A tool to perform Kerberos pre-auth bruteforcing
gocrawler/bingbot - A crawler that crawls search engine! 😎 Usable for collecting site with dorks and wildcards. Also provides output in web interface with more than 3 API endpoints!
N0MoreSecr3ts/wraith - Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
avineshwar/slurp - S3 bucket enumerator
OWASP/Amass - In-depth Attack Surface Mapping and Asset Discovery
caffix/amass - In-depth Attack Surface Mapping and Asset Discovery
hahwul/dalfox - 🌙🦊 DalFox is an powerful open source XSS scanning tool and parameter analyzer, utility
stefanoj3/dirstalk - Modern alternative to dirbuster/dirb
Ullaakut/camerattack - An attack tool designed to remotely disable CCTV camera streams (like in spy movies)
Ullaakut/cameradar - Cameradar hacks its way into RTSP videosurveillance cameras
evilsocket/xray - XRay is a tool for recon, mapping and OSINT gathering from public networks.
OJ/gobuster - Directory/File, DNS and VHost busting tool written in Go
jaeles-project/gospider - Gospider - Fast web spider written in Go
tismayil/ohmybackup - Scan Victim Backup Directories & Backup Files
sundowndev/dorkgen - Type-safe dork queries for search engines such as Google, Yahoo, DuckDuckGo & Bing
wtfutil/wtf - The personal information dashboard for your terminal
projectdiscovery/naabu - A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
projectdiscovery/subfinder - Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
tomnomnom/waybackurls - Fetch all the URLs that the Wayback Machine knows about for a domain
Nhoya/gOSINT - OSINT Swiss Army Knife
apilayer/freegeoip - IP geolocation web server
sundowndev/phoneinfoga-google-driver - WIP - Chromium plugin for PhoneInfoga's Google Search scanner
hakluke/hakrawler - Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
s-rah/onionscan - OnionScan is a free and open source tool for investigating the Dark Web.
zricethezav/gitleaks - Protect and discover secrets using Gitleaks 🔑
BishopFox/dufflebag - Search exposed EBS volumes for secrets
trandoshan-io/crawler - Go process used to crawl websites
gophish/gophish - Open-Source Phishing Toolkit
averagesecurityguy/scrape - Extensible paste site scraper written in Golang.
firefart/pastebin_scraper - golang program to parse Pastebin for keywords and send them per E-Mail
tillson/git-hound - Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.
techjacker/repo-security-scanner - CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
trufflesecurity/trufflehog - Find credentials all over the place
drk1wi/Modlishka - Modlishka. Reverse Proxy.
j3ssie/osmedeus - A Workflow Engine for Offensive Security
notdodo/pastego - Scrape/Parse Pastebin using GO and expression grammar (PEG)
j3ssie/metabigor - Intelligence tool but without API key
pritunl/pritunl-client-electron - Pritunl OpenVPN client
graniet/operative-framework - operative framework is a investigation OSINT framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or re
sundowndev/phoneinfoga - Information gathering & OSINT framework for phone numbers

HTML

ericchiang/pup - Parsing HTML at the command line
trickest/cve - Gather and update all available and newest CVEs with their PoC.
cipher387/osint_stuff_tool_collection - A collection of several hundred online tools for OSINT
zzzteph/weakpass - Weakpass rule-based online generator to create a wordlist based on a set of words entered by the user.
cipher387/cipher387.github.io - Repo for site with links to my projects
woj-ciech/intelx_viz - Collect information about leaks for particular domain in IntelX and present it on a tree view graph.
spcau/godiff - Utility to compare files/directories with output in html. (like unix diff command)
diveshlunker/Brute-Force-Passwords - Generate list of all possible passwords of your desired size and with desired starting alphabet. Link for the website:-
7MinSec/bpatty - Brian's Pentesting and Technical Tips for You
allo-/firefox-profilemaker - Tool to create firefox profiles with good defaults.
ultrasecurity/Storm-Breaker - Social engineering tool [Access Webcam & Microphone & Location Finder] With Python
OWASP/Nettacker - Automated Penetration Testing Framework - Open-Source Vulnerability Scanner - Vulnerability Management
3ndG4me/KaliLists - Repo of all the default wordlists included in Kali. Convienent if you're using something other than Kali.
SamJoan/droopescan - A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
Igglybuff/awesome-piracy - A curated list of awesome warez and piracy links
brainwallet/brainwallet.github.io - Brainwallet site
ustayready/CredSniper - CredSniper is a phishing framework written with the Python micro-framework Flask and Jinja2 templating which supports capturing 2FA tokens.
FluxionNetwork/fluxion - Fluxion is a remake of linset by vk496 with enhanced functionality.
0xiNach/Web-Scraping-Machine-Learning - Hackmageddon
Securityautomation/DumpTheGit - DumpTheGit searches through public repositories to find sensitive information uploaded to the Github repositories.
propublica/upton - A batteries-included framework for easy web-scraping. Just add CSS! (Or do more.)
ArchiveTeam/wpull - Wget-compatible web downloader and crawler.

Hack

D3Ext/WEF - Wi-Fi Exploitation Framework
htr-tech/zphisher - An automated phishing tool with 30+ templates. This Tool is made for educational purpose only ! Author will not be responsible for any misuse of this toolkit !

Java

MobSF/mobsfscan - mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis r
guardianproject/orbot - The Github home of Orbot: Tor on Android (Also available on gitlab!)
mayflower/agcod-java-client - Unofficial AGCOD (Amazon Gift Card On Demand) Client for Java
sepinf-inc/IPED - IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by p
1n7erface/PocList - Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-G
anoop2677/PaySafeCardAPI -
faiqsohail/ProxyChecker - An easy to use open-source, multithreaded Proxy Checker. Allows you to quickly check HTTP and SOCKS proxies in a user friendly GUI, for Windows, Mac OS, Linux.
whatwebgui/WhatWebGUI - WhatWebGUI is a cross-platform compatible Java-based application for Windows 10, Mac OSX and Linux which implements the front end of the popular web scanning tool WhatWeb, the next generation web scan
PreferredAI/venom - Your preferred open source focused crawler for the deep web.
stripe-archive/accept-a-card-payment - Learn how to accept a basic card payment on web, iOS, Android
ron190/jsql-injection - jSQL Injection is a Java application for automatic SQL database injection.
tonikelope/megabasterd - Yet another unofficial (and ugly) cross-platform MEGA downloader/uploader/streaming suite.
codelibs/elasticsearch-dataformat - Excel/CSV/BulkJSON downloads on Elasticsearch.
summitt/Burp-Non-HTTP-Extension - Non-HTTP Protocol Extension (NoPE) Proxy and DNS for Burp Suite.
PortSwigger/http-request-smuggler -
PortSwigger/wordlist-extractor -
nccgroup/BurpSuiteHTTPSmuggler - A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
P3GLEG/PwnBack - Burp Extender plugin that generates a sitemap of a website using Wayback Machine
fivesmallq/web-data-extractor - Extracting and parsing structured data with jQuery Selector, XPath or JsonPath from common web format like HTML, XML and JSON.
angryip/ipscan - Angry IP Scanner - fast and friendly network scanner
imperva/automatic-api-attack-tool - Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an output.
NaveenRudra/RTTM - Real Time Threat Monitoring Tool
zaproxy/zaproxy - The OWASP ZAP core project

JavaScript

ramoona/banks-db - Community driven database to get bank info (name, brand color etc.) by bankcard prefix (BIN)
0140454/hackbar - A browser extension for Penetration Testing
ofirgt0/captainServer -
doener2323/doenerium - Fully undetected grabber (grabs wallets, passwords, cookies, modifies discord client etc.)
h33tlit/Jbin-website-secret-scraper - Jbin will gather all the URLs from the website and then it will try to expose the secret data from them such as API keys, API secrets, API tokens and many other juicy information.
gildas-lormeau/SingleFile - Web Extension for Firefox/Chrome/MS Edge and CLI tool to save a faithful copy of an entire web page in a single HTML file
hakluke/weaponised-XSS-payloads - XSS payloads designed to turn alert(1) into P1
s0md3v/AwesomeXSS - Awesome XSS stuff
WebGoat/WebGoat - WebGoat is a deliberately insecure application
james-proxy/james - Web Debugging Proxy Application
skevy/graphiql-app - Light, Electron-based Wrapper around GraphiQL
dsheiko/puppetry - Web testing solution for non-developers on top of Puppeteer and Jest
unixfox/pupflare - A webpage proxy that request through Chromium (puppeteer) - can be used to bypass Cloudflare anti bot / anti ddos on any application (like curl)
samc621/SneakerBot - All-in-one bot, with auto captcha-solving and proxy management, using Node.js and Puppeteer.
transitive-bullshit/puppeteer-render-text - Robust text renderer using headless chrome.
checkly/headless-recorder - Chrome extension that records your browser interactions and generates a Playwright or Puppeteer script.
Smartproxy/Puppeteer - Puppeteer proxy authentication example for Smartproxy
jancurn/actor-residential-proxy-probe - Probes Apify residential proxies and maintains a pool of proxies from specific ZIP codes or DMAs
kameleo-io/local-api-examples - Useful and easy to understand examples written in Node.js and .NET Core about web scraping and automated browsing with Kameleo Client
nswbmw/puppeteer-extra-plugin-proxy2 - Add proxy for puppeteer page, support http, https, socks. Based on puppeteer-page-proxy.
f9mac/puppeteer-extra-plugin-proxy - A plugin for puppeteer-extra to add proxy support
MeiK2333/pyppeteer_stealth -
tholian-network/stealth - 🚀 Stealth - Secure, Peer-to-Peer, Private and Automateable Web Browser/Scraper/Proxy
fabienvauchelles/scrapoxy - Scrapoxy hides your scraper behind a cloud. It starts a pool of proxies to send your requests. Now, you can crawl without thinking about blacklisting!
kkoooqq/fakebrowser - 🤖 Fake fingerprints to bypass anti-bot systems. Simulate mouse and keyboard operations to make behavior like a real person.
niespodd/browser-fingerprinting - Analysis of Bot Protection systems with available countermeasures 🚿. How to defeat anti-bot system 👻 and get around browser fingerprinting scripts 🕵️‍♂️ when scraping the web?
berstend/puppeteer-extra - 💯 Teach puppeteer new tricks through plugins.
arantius/resurrect-pages - A tool to expose cached copies of webpages, especially when they are unavailable.
c6fc/warcannon - High speed/Low cost CommonCrawl RegExp in Node.js
Michal2SAB/Hash-Dehasher - A program to find the real string for your hash. MD5, SHA256, any really. Works really fast, gets to the "aaaa" combo in about 1 second even on a bad and busy pc.
Michal2SAB/Bitcoin-Stealer - Generate random bitcoin wallets, private keys (seeds) and then check if they match a wallet that contains some kind of balance, and then take it. Node.js
yeswehack/PwnFox - PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
zelsaddr/AutoCreateMS365Edu - Auto Create Microsoft Office 365 Edu Plan Account
insectman/ig-hashtags -
trufflesecurity/Trufflehog-Chrome-Extension -
MlkMahmud/giftpal-reloadlyXflutterwave - ReloadlyXFlutterwave Hackathon Project
kevgk/OD-Search - Web-Extension that builds search queries to find files on the internet.
I2rys/Safier - Example of a simple Multi services accounts checker with configs writen in NodeJS.
dessant/buster - Captcha solver extension for humans
martinsbalodis/web-scraper-chrome-extension - Web data extraction tool implemented as chrome extension
hakanonymos/paypal_integration_carding - paypal pro integration for carding I am not responsible for your actions
pyllyukko/user.js - user.js -- Firefox configuration hardening
r4j0x00/exploits -
sayyedhanif/hanif_test -
NaturalIntelligence/fast-xml-parser - Validate XML, Parse XML and Build XML rapidly without C/C++ based libraries and no callback.
anoop2677/paysafeUI -
jaebradley/github-personal-access-token-generator-cli - Create GitHub Personal Access Tokens from the Terminal
uiowa-irl/FP-Inspector - Artifact release for our IEEE Symposium on Security and Privacy 2021 paper entitled Fingerprinting the Fingerprinters: Learning to Detect Browser Fingerprinting Behaviors
woj-ciech/LeakLooker-X - LeakLooker GUI - Discover, browse and monitor database/source code leaks
ElasticHQ/elasticsearch-HQ - Monitoring and Management Web Application for ElasticSearch instances and clusters.
transitive-bullshit/sms-number-verifier - Allows you to spoof SMS number verification.
transitive-bullshit/getsmscode - API client for getsmscode.com
csrednicki/nordvpn-server-list - Get list of all NordVPN active servers
arkenfox/user.js - Firefox privacy, security and anti-tracking: a comprehensive user.js template for configuration and hardening
chile-sh/vpn-proxy - 💻 Automatic proxy switching using VPNs (cheap Luminati alternative)
luminati-io/luminati-proxy - Luminati HTTP/HTTPS Proxy manager
foytak/Archive -
sunny9577/proxy-scraper - ⭐️ A proxy scraper made using Protractor | Proxy list Updates every three hour 🔥
petercunha/Knock - 🔑 Scan the entire internet for SSH and Telnet services. Then hack them.
ChrisAntaki/disable-webrtc-firefox - 🔒 WebRTC leaks your actual IP addresses from behind your VPN, by default.
VoidSec/WebRTC-Leak - Check if your VPN leaks your IP address via the WebRTC technology
mindedsecurity/behave - Behave! A monitoring browser extension for pages acting as "bad boi"
yogeshojha/rengine - reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous mon
Sameer711/bitcoin-bruteforce-decrypt - A bitcoin wallet brute force cracker using node.js
chill117/proxy-lists - Node.js module and CLI tool to get proxies from publicly available proxy lists.
gchq/CyberChef - The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
miguelmota/s3scanner - Scan for open public S3 buckets
FlatL1neAPT/LeakLooker-X - LeakLooker GUI - Discover, browse and monitor database/source code leaks
s77rt/hashcat.launcher - hashcat.launcher is a cross-platform app that run and control hashcat
gwen001/github-search - Tools to perform basic search on GitHub.
thdoan/autofill-firefox - Autofill is a small but powerful add-on for Mozilla Firefox that serves one purpose: fill form fields automatically on page load. It is for people who just want a straightforward form filler without a
JimmyLaurent/cloudflare-scraper - A package to bypass Cloudflare's protection
cloudant/couchbackup - Cloudant backup and restore library and command-line utility
lmenezes/cerebro -
risk3sixty/geoapi - Lightweight API service to get geolocation data from IP addresses.
sunjw/jstoolnpp - A JavaScript (JSON) tool for Notepad++ (formerly JSMinNpp) and Visual Studio Code.
megaboich/js-map-parser - Extension for Visual Studio to improve JS support
AlecBlance/S3BucketList - Firefox plugin that lists Amazon S3 Buckets found in requests
johnfactotum/foliate - A simple and modern GTK eBook reader
wappalyzer/wappalyzer - Identify technology on websites.
USSCltd/dorks - google hack database automation tool
elasticsearch-dump/elasticsearch-dump - Import and export tools for elasticsearch
mallocator/Elasticsearch-Exporter - A small script to export data from one Elasticsearch cluster into another.
Coalfire-Research/npk - A mostly-serverless distributed hash cracking platform
dachinzo/dachinzo.github.io -
iancoleman/bip39 - A web tool for converting BIP39 mnemonic codes
0x0FB0/pulsar - Network footprint scanner platform. Discover domains and run your custom checks periodically.
k4m4/dcipher - Decipher hashes using online rainbow & lookup table attack services.
k4m4/dcipher-cli - 🔓Crack hashes using online rainbow & lookup table attack services, right from your terminal.
lreiner/Whatsapp-Message-Spammer - This Script spams as many Messages as you want in a Chat. Tampermonkey Executable to inject Extensions to Whatsapp Web. Free to use for everyone. 📩
kolonist/bscoords - Get location based on (MCC, MNC, LAC, CellID) using Google, Yandex, OpenCellID and Mozilla Location Service
kolonist/wifi_location - Get location based on WI-Fi access point BSSID using Mylnikov Geo and Wigle.net
NORMA-Inc/AtEar - Wireless Hacking, WiFi Security, Vulnerability Analyzer, Pentestration
atom/atom - The hackable text editor
ETCExtensions/Edit-This-Cookie - EditThisCookie is the famous Google Chrome/Chromium extension for editing cookies
varchashva/LetsMapYourNetwork - Lets Map Your Network enables you to visualise your physical network in form of graph with zero manual error
simonepri/upash - 🔒Unified API for password hashing algorithms
brannondorsey/ProbeKit - SSID Probe Request Collection Workshop
samyk/poisontap - Exploits locked/password protected computers over USB, drops persistent WebSocket-based backdoor, exposes internal router, and siphons cookies using Raspberry Pi Zero & Node.js.
pownjs/proxy - Pown Proxy is a versatile web application security testing proxy with cool TUI features.
beefproject/beef - The Browser Exploitation Framework Project
MobSF/Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and
ray-lothian/UserAgent-Switcher - A User-Agent spoofer browser extension that is highly configurable
eth0izzle/shhgit - Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories: www.shhgit.com
shadow-workers/shadow-workers - Shadow Workers is a free and open source C2 and proxy designed for penetration testers to help in the exploitation of XSS and malicious Service Workers (SW)
alephdata/aleph - Search and browse documents and data; find the people and companies you look for.
website-scraper/node-website-scraper - Download website to local directory (including all css, images, js, etc.)
WebMemex/webmemex-extension - 📇 Your digital memory extension, as a browser extension
lockfale/OSINT-Framework - OSINT Framework
freakdesign/shopifyFD - JavaScript layer to provide additional functionality and fixes to the Shopify dashboard

Jupyter Notebook

x4nth055/pythoncode-tutorials - The Python Code Tutorials

Kotlin

CyanCoding/Brute-Force-Password-Cracker - A brute force attacker with packages for development in Python 3, Kotlin, C#, Go, Vala, and C++.

Lua

scipag/vulscan - Advanced vulnerability scanning with Nmap NSE
OCSAF/freevulnsearch - Free and open NMAP NSE script to query vulnerabilities via the cve-search.org API.
vulnersCom/nmap-vulners - NSE script based on Vulners.com API

Makefile

lorien/awesome-web-scraping - List of libraries, tools and APIs for web scraping and data processing.

Nim

ParrotSec/anonsurf - parrot anonymous mode

Objective-C

macmade/FileVaultCracker - macOS FileVault cracking tool
macmade/KeychainCracker - macOS keychain cracking tool
lucasjacks0n/EggShell - iOS/macOS/Linux Remote Administration Tool

Others

rangav/thunder-client-support - Thunder Client is a lightweight Rest API Client Extension for VS Code.
arimogi/Google-Dorks - I'm uploading dorks here.
Neo23x0/vti-dorks - Awesome VirusTotal Intelligence Search Queries
arkadiyt/bounty-targets-data - This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
fastfire/deepdarkCTI - Collection of Cyber Threat Intelligence sources from the deep and dark web
Ginsberg5150/Discord-and-Telegram-OSINT-references - Small repo for Telegram and Discord OSINT and research
KevinColemanInc/awesome-privacy - 💡Limiting personal data leaks on the internet
chenjj/Awesome-HTTPRequestSmuggling - A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻
The-Viper-One/Pentest-Everything - A collection of CTF write-ups, pentesting topics, guides and notes. Notes compiled from multiple sources and my own lab research. Topics also support OSCP, Active Directory, CRTE, eJPT and eCPPT.
forb1d3n/Trixie - Here i'll post new tricks concerning scamming, carding etc. Stay tuned
SecOps-Institute/Tor-IP-Addresses - Hourly checked and updated list of IP Addresses of Tor and Tor Exit Nodes
ProxymanApp/Proxyman - Modern. Native. Delightful Web Debugging Proxy for macOS, iOS, and Android ⚡️
h33tlit/HowToHunt - Tutorials and Things to Do while Hunting Vulnerability.
h33tlit/SniffCon-Ultimate-Recon-Dashboard-For-Bug-Bounty-And-Pentesting - Sniffcon has a wide list of powerful online bug bounty tools which can be used to find security vulnerabilities.
h3110w0r1d-y/BurpLoaderKeygen - Burp Suite Pro Loader & Keygen
daffainfo/all-about-apikey - Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
CorrieOnly/google-dorks -
cipher387/API-s-for-OSINT - List of API's for gathering information about phone numbers, addresses, domains etc
cipher387/awesome-grep - List of GREP modifications and alternatives for a variety of purposes
httptoolkit/httptoolkit - HTTP Toolkit is a beautiful & open-source tool for debugging, testing and building with HTTP(S) on Windows, Linux & Mac 🎉 Open an issue here to give feedback or ask for help.
hhhrrrttt222111/Ethical-Hacking-Tools - Complete Listing and Usage of Tools used for Ethical Hacking
iamavu/personal-security-checklist - 🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021
transitive-bullshit/awesome-puppeteer - A curated list of awesome puppeteer resources.
dragonfruitnetwork/onionfruit - OnionFruit™ Connect - Tor access client with country selection, bridge configuration, pluggable transports and experimental DNS support
grayphi/dorks - google dorks
snyk-labs/awesome-log4shell - An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
onceupon/Bash-Oneliner - A collection of handy Bash One-Liners and terminal tricks for data processing and Linux system maintenance.
arturoherrero/command-line-one-liners - Command line one-liners.
dwisiswant0/awesome-oneliner-bugbounty - A collection of awesome one-liner scripts especially for bug bounty tips.
Ignitetechnologies/Command-Control - This cheasheet is aimed at the Red Teamers to help them find diffent tools and methods to create a Commmand and Control Server and exploit remote session.
six2dez/pentest-book -
insidetrust/statistically-likely-usernames - Wordlists for creating statistically likely username lists for use in password attacks and security testing
s0md3v/be-a-hacker - roadmap for being a self-taught hacker
apurvsinghgautam/dark-web-osint-tools - OSINT Tools for the Dark Web
snoopysecurity/awesome-burp-extensions - A curated list of amazingly awesome Burp Extensions
cipher387/Dorks-collections-list - List of Github repositories and articles with list of dorks for different search engines
AngelSecurityTeam/SQLiDumper-AngelSecurityTeam - Dork Search , Vulnerability Scanner ,SQL Injection , XSS , LFI ,RFI
HoangKien1020/Joomla-SQLinjection - Collection about PoC for sql injection on Joomla
zxc2007/Office365-Checker-Smtp_Checker -
Awesome-Windows/Awesome - 💻 🎉 An awesome & curated list of best applications and tools for Windows.
random-robbie/bruteforce-lists - Some files for bruteforcing certain things.
ShivamRai2003/SQL-Injection-Google-Dork-List - Updated 6000 Sql Injection Google Dork 2021
ShutdownRepo/The-Hacker-Recipes - This project is aimed at freely providing technical guides on various hacking topics: Active Directory services, web services, servers, intelligence gathering, physical intrusion, phishing, mobile app
NirajShr3stha/Awesome - 💻 🎉 An awesome & curated list of best applications and tools for Windows.
misterch0c/CrimeBoards - A list of private and public (more or less) blackhat boards
arhaxor21/BruteList - Brute List is an updated word list for brute-forcing the assets. This is not like a normal outdated word list. I have collected several lists from many resources and created them as a single list.
clem9669/hashcat-rule - Rule for hashcat or john. Aiming to crack how people generate their password
praetorian-inc/Hob0Rules - Password cracking rules for Hashcat based on statistics and industry patterns
projectdiscovery/nuclei-templates - Community curated list of templates for the nuclei engine to find security vulnerabilities.
qazbnm456/awesome-cve-poc - ✍️ A curated list of CVE PoCs.
iGotRootSRC/Dorkers - Dorks for Google, Shodan and BinaryEdge
paylike/api-docs - Paylike API Documentation
assalielmehdi/CVE-2017-12635 - Case study and POC of CVE-2017-12635: Apache CouchDB 1.7.0 / 2.x < 2.1.1 - Remote Privilege Escalation
IAmBlackHacker/Software - Some software for windows and linux
RoyalFlyBy/PornHubDownloader - A pornhub.com downloader that allows you to login so you can download everything you have access to. including but not limited to private videos, 1080p or higher resolutions, premium videos and even p
humanetech-community/awesome-humane-tech - Promoting Solutions that Improve Wellbeing, Freedom and Society
rockmelodies/CVE-2019-0708-Exploit - Using CVE-2019-0708 to Locally Promote Privileges in Windows 10 System
Mad-robot/wordpress-exploits - All known and unknown public POC's for wordpress themes and plugins
kleiton0x00/Advanced-SQL-Injection-Cheatsheet - A cheat sheet that contains advanced queries for SQL Injection of all types.
ClimenteA/vamp-theme-notepad - Dark theme for notepad++
LMongoose/DeeperBlack - My custom theme for Notepad++ based on "Deep Black".
SDXC/NotepadPlusPlus-Customizations - Customized config files and themes for Notepad++
naderi/material-theme-for-npp - Material Theme (Dark) for Notepad++
rndinfosecguy/pastePasswordLists - Top password lists generated from leaks collected from different paste sites
EdOverflow/can-i-take-over-xyz - "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
random-robbie/keywords -
lorien/awesome-pastebin - List of pastebin sites.
We5ter/Scanners-Box - A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
TheSpeedX/PROXY-List - Get PROXY List that gets updated everyday
3dot14r8/S3-Tools - Repository of publically available tools used to examine S3 Buckets
nightwatchcybersecurity/public-cloud-storage-search - A search engine for content shared publicly via cloud storage services
jassics/awesome-aws-security - Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS Security
T43cr0wl3r/OSINT-RECON - Open source intelligence tools and resources
billymood/open-directories - List of Open Directories
aleedhillon/7000-Google-Dork-List - 7,000 Dorks for hacking into various sites
singhdharmveer311/Google-Dorks-2019 -
redhuntlabs/Awesome-Asset-Discovery - List of Awesome Asset Discovery Resources
jeanphorn/wordlist - Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.
digitalshadows/virtualwhale-osint-ctf - The "Virtual Whale" OSINT CTF at BSides DFW 2019!
nomi-sec/PoC-in-GitHub - 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
odomojuli/RegExAPI - list of regex for apis
JavierOlmedo/shodan-filters - A list of shodan filters
SilverPoision/a-full-list-of-wordlists - this contain the burp pack
unexpectedBy/SQLi-Dork-Repository - Dorks Hacking Database for educational proposal
iannuttall/binlist-data - An open-source list of bank BIN/IIN numbers
Ranginang67/Firecrack - 🔥 Firecrack pentest tools: Facebook hacking random attack, deface, admin finder, bing dorking:
alphaSeclab/awesome-burp-suite - Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.
dustyfresh/dictionaries - curated password lists and various other lists/dictionaries for security things
humblelad/Shodan-Dorks - Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.
RhinoSecurityLabs/Presentations - A collection of slides, videos, and proof-of-concept scripts from various Rhino presentations.
nagwww/101-AWS-IAM-Hacks -
abilitize/Helpful-Lists - Helpful lists for Marketo users: Companies, ISPs, and other info.
JannisKirschner/Dorks - Personal Collection of Awesome Google Dorks
jhaddix/tbhm - The Bug Hunters Methodology
storm119/Tilix-Themes - Theme for Tilix Terminal
kaonashi-passwords/Kaonashi - Wordlist, rules and masks from Kaonashi project (RootedCON 2019)
NotSoSecure/password_cracking_rules - One rule to crack all passwords. or atleast we hope so.
clarketm/proxy-list - A list of free, public, forward proxy servers. UPDATED DAILY!
nbarsch/nordUSserv - Nord US servers dataset
Hackplayers/hackthebox-writeups - Writeups for HacktheBox 'boot2root' machines
OlivierLaflamme/Cheatsheet-God - Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
ansjdnakjdnajkd/iOS - Most usable tools for iOS penetration testing
duyet/bruteforce-database - Bruteforce database
sundowndev/hacker-roadmap - A collection of hacking tools, resources and references to practice ethical hacking.
trimstray/the-book-of-secret-knowledge - A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
tarunkant/SpyTools - This tool is a collection of tools made by me
streaak/keyhacks - Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
carpedm20/awesome-hacking - A curated list of awesome Hacking tutorials, tools and resources
jakejarvis/awesome-shodan-queries - 🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻
yeahhub/Hacking-Security-Ebooks - Top 100 Hacking & Security E-Books (Free Download)
M3l0nPan/pwndb_api - Pwndb request API
vitalysim/Awesome-Hacking-Resources - A collection of hacking / penetration testing resources to make you better!
jcesarstef/ghhdb-Github-Hacking-Database - Github Hacking Database - My personal collection of Github Dorks to search for Confidential Information (Yes, it's a Github version of Google Dorks)
100apps/charles-hacking - Hacking Charles Web Debugging Proxy
BullsEye0/google_dork_list - Google Dorks | Google helps you to find Vulnerable Websites that Indexed in Google Search Results. Here is the latest collection of Google Dorks. A collection of 13.760 Dorks. Author: Jolanda de Koff
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters - A list of resources for those interested in getting started in bug bounties
berzerk0/Probable-Wordlists - Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
infosecn1nja/Red-Teaming-Toolkit - This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
brannondorsey/wifi-cracking - Crack WPA/WPA2 Wi-Fi Routers with Airodump-ng and Aircrack-ng/Hashcat
blaCCkHatHacEEkr/PENTESTING-BIBLE - Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
xsleaks/xsleaks - A collection of browser-based side channel attack vectors.
toolswatch/blackhat-arsenal-tools - Official Black Hat Arsenal Security Tools Repository
cjbarber/ToolsOfTheTrade - Tools of The Trade, from Hacker News.
woj-ciech/LeakLooker - Find open databases - Powered by Binaryedge.io
W00t3k/Awesome-Cellular-Hacking - Awesome-Cellular-Hacking
harismuneer/Ultimate-Facebook-Scraper - 🤖 A Software that automates your social media interactions to collect posts, photos, videos, interests, friends, followers, and much more on Facebook.
jnv/lists - The definitive list of lists (of lists) curated on GitHub and elsewhere
enaqx/awesome-pentest - A collection of awesome penetration testing resources, tools and other shiny things
cugu/awesome-forensics - A curated list of awesome forensic analysis tools and resources
herrbischoff/awesome-macos-command-line - Use your macOS terminal shell to do awesome things.
julionc/awesome-shopify - 📌✨A curated list of awesome Shopify resources, libraries and open source projects.

PHP

rabeltester44/Magentolog - Dump cc + mail
kristuff/abuseipdb-cli - A CLI tool to check ✔️, report 🚩 IP addresses, download blacklist 🚫 with AbuseIPDB API v2
helich0pper/Karkinos - Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
kamerk22/AmazonGiftCode - Laravel package for Amazon Gift Codes On Demand (AGCOD). Integration for Amazon Incentive API 🎁
KatieP/gp-wp-core - Green Pages wordpress core plugin
sauladam/omnipay-paysafecard-rest - Omnipay driver for Paysafecard (REST API)
mollie/PrestaShop1.7 - iDEAL, Creditcard, Bancontact, SOFORT, Bank transfer, PayPal & paysafecard for Prestashop
A3h1nt/Grawler - Grawler is a tool written in PHP which comes with a web interface that automates the task of using google dorks, scrapes the results, and stores them in a file.
Tuhinshubhra/RED_HAWK - All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers
0xb0y/Magento-Grabber - Auto exploiter + Dumper, steal information on victim site, and auto create mailer on victim
vitaminarts/Telegram-scraper-api - An easy-to-use PHP api for Getting contents of Telegram's public channels and groups Messages without needing to join them.
lucasfrag/Kali-Linux-Tools-Interface - Graphical Web interface developed to facilitate the use of security information tools.
steverobbins/magescan - Scan a Magento site for information
googleinurl/SCANNER-INURLBR - Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.
fuzzdb-project/fuzzdb - Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
kakumanivrn/email_password_cracker - A PHP tool to perform dictionary attacks on Gmail, Microsoft Live and Hotmail accounts.
gwen001/s3-buckets-finder - Find aws s3 buckets and extract datas.
Znerox/wifimap - WiFi- and Bluetooth devices overlayed on Google Maps. Sourced from WiGLE Android app / Aircrack-ng.
rajkumardusad/IP-Tracer - Track any ip address with IP-Tracer. IP-Tracer is developed for Linux and Termux. you can retrieve any ip address information using IP-Tracer.
davidtavarez/pinky - pinky - The PHP mini RAT (Remote Administration Tool)
binarymaster/3WiFi - 3WiFi Wireless Database
danielmiessler/SecLists - SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensi
noncent/instagram-data-scraper - Instagram Data Scraper, Instagram Web Scraper, Instagram Super Scraper is a PHP script which takes @user-name or #keywords as input and returns all information related to user or hash-tags e.g. likes,

Pascal

greatis/Anti-WebMiner - Anti-WebMiner protects your PC against web cryptocurrency miners (JS scripts like Coinhive executed in the browser) by modifying Windows hosts file

Perl

c99tn/vMass - vMass Bot 🪝 Vulnerability Scanner & Auto Exploiter Tool Written in Perl.
htrgouvea/nipe - An engine to make Tor network your default gateway
Zusyaku/Deface-And-Dorking - Tutorial Seputar Depes Dan Web Hacking
Aron-Tn/Mega-Bot - [NEW] : Mega Bot ☣ Scanner & Auto Exploiter
AlisamTechnology/ATSCAN - Advanced dork Search & Mass Exploit Scanner
Moham3dRiahi/XAttacker - X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
sullo/nikto - Nikto web server scanner
htrgouvea/harpoon - [W.I.P] An ecosystem of crawlers for detecting: leaks, sensitive data exposure and attempts exfiltration of data
Moham3dRiahi/Th3inspector - Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

PowerShell

grumpychris/pentest-resources - Links, commands, tools etc. for use in pentesting
dafthack/PowerMeta - PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files
dafthack/MailSniper - MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can b
SNGWN/Burp-Suite - || Activate Burp Suite Pro with Key-Generator and Key-Loader ||
Daksh777/windows10-debloat - Collection of various scripts and apps to debloat Windows 10 for better privacy, performance and optimization.
pratyakshm/WinRice - WinRice is a tool that uses PowerShell automation to setup your Windows devices.
BloodHoundAD/Legacy-AzureHound.ps1 -
NetSPI/MicroBurst - A collection of scripts for assessing Microsoft Azure security
securethelogs/RedRabbit - Red Team PowerShell Script
leebaird/discover - Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

Python

kozmer/log4j-shell-poc - A Proof-Of-Concept for the CVE-2021-44228 vulnerability.
alessandrodd/apk_api_key_extractor - Automatically extracts API Keys from APK files
securisec/chepy - Chepy is a python lib/cli equivalent of the awesome CyberChef tool.
GamehunterKaan/AutoPWN-Suite - AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.
mnismt/CompressedCrack - Crack password .rar and .zip file with Python
jackjack-jj/pywallet - bitcoin wallet importer/exporter
Kr0ff/Pasta - A PasteBin scrapper that doesnt rely on the PasteBin scrape API
estebanpdl/telegram-api - It connects to Telegram's API. It generates JSON files containing channel's data, including channel's information and posts. You can search for a specific channel, or a set of channels provided in a t
p0dalirius/ApacheTomcatScanner - A python script to scan for Apache Tomcat server vulnerabilities.
chrispetrou/FastAudit - A wordpress security auditor! Audit your wordpress application for security issues with even 1 request.
encode/httpx - A next generation HTTP client for Python. 🦋
svo80/vti_search - VirusTotal Intelligence Search
Neo23x0/munin - Online hash checker for Virustotal and other services
fr0gger/vthunting - Vthunting is a tiny script used to generate report about Virus Total hunting and send it by email, slack or telegram.
VirusTotal/vt-py - The official Python 3 client library for VirusTotal
mpgn/CVE-2019-19781 - CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit
jas502n/CVE-2019-19781 - Citrix ADC Remote Code Execution
josehelps/git-wild-hunt - A tool to hunt for credentials in github wild AKA git*hunt
mail-in-a-box/mailinabox - Mail-in-a-Box helps individuals take back control of their email by defining a one-click, easy-to-deploy SMTP+everything else server: a mail server in a box.
loseys/Oblivion - Data leak checker & OSINT Tool
rly0nheart/thelordseye - thelordseye searches and returns detailed information about devices that are directly connected to the internet [IoT] (Smart TV's, Fridges, Webcams, Traffic Lights etc).
bellingcat/octosuite - Advanced Github OSINT Framework
pablosnt/rekono - Execute full pentesting processes combining multiple hacking tools automatically
infosec-au/enumXFF - Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
defparam/smuggler - Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
anshumanpattnaik/http-request-smuggling - HTTP Request Smuggling Detection Tool
janeklb/gh-search - GitHub code search with full text regex filtering, from your cli.
python-poetry/poetry - Python packaging and dependency management made easy
sdushantha/dora - Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
nicolas-carolo/hsploit - An advanced command-line search engine for Exploit-DB
ruped24/toriptables3 - Tor Iptables script is an anonymizer that sets up iptables and tor to route all services and traffic including DNS through the Tor network.
ruped24/tor_ip_switcher - tor_ip_switcher is useful for making any DoS attack look like a DDoS attack. Works with toriptables2.
jekil/awesome-hacking - Awesome hacking is an awesome collection of hacking tools.
mitmproxy/mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
ail-project/ail-framework - AIL framework - Analysis Information Leak framework
JMousqueton/PoC-CVE-2022-30190 - POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina
vulmon/Vulmap - Vulmap Online Local Vulnerability Scanners Project
capture0x/XSS-LOADER - Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder
hamid0740/Combo-List-Fixer - Simple python code to fix your combo list by removing any text after a separator or removing duplicate combos
JakeWnuk/SickNerd - CLI tool for Google Dorking with the ability to fetch and filter dorks from GHDB, save and load results, and search multiple domains.
E4rr0r4/XGDork-2 - SQLi Google Dork Scanner (new version)
jnrbsn/user-agents - Latest user agent strings for major browsers and OSs; checks for updates daily
fullhunt/spring4shell-scan - A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
gwen001/pentest-tools - Custom pentesting tools
hacktoolspack/hack-tools - hack tools
notdls/grayurls - CLI tool to obtain a list of resolved short URLs for given domain using GrayhatWarfare's Shorteners API.
DanusMinimus/snallybuckster - Locate intersting files in grayhatwarfare.com open S3 buckets and Azure blobs automatically!
PushpenderIndia/ragno - Ragno is a Passive URL Crawler | Written in Python3 | Fetches URLs from the Wayback Machine, AlienVault's Open Threat Exchange & Common Crawl
ehudbaumatz/scrapers - scraping non-scrapy sites (e.g. search engines, wayback machine etc)
AngelSecurityTeam/CC_Scrapper - Telegram CC Scrapper - Debit/Credit Card [channel public or private / group ]
ustayready/CredKing - Password spraying using AWS Lambda for IP rotation
hhhrrrttt222111/Dorkify - Perform Google Dork search with Dorkify
GONZOsint/geowifi - Search WiFi geolocation data by BSSID and SSID on different public databases.
sm00v/Dehashed - This repo contains scripts to query dehashed.com and crack the returned hashes which will then save all cleartext passwords and hashes to files.
iamavu/Slyther - AWS Security Tool
rly0nheart/oxdork - Google dorking tool
averagesecurityguy/scripts - Scripts I use during pentest engagements.
Plasmonix/Netflixer - 👻 Fast Netflix account checker
Its-Vichy/IpVanish-Checker - Ultra fast checker made in 10min
Josue87/pwndbTorCredentials -
jdiazmx/karma - API pwndb
nccgroup/gitpwnd - GitPwnd is a network penetration tool that lets you use a git repo for command and control of compromised machines
cpjust/Lotto - Python scripts to test different strategies for improving the odds of winning with lottery pools. Specifically it tests using an abbreviated lottery wheel pattern which guarantees at least 1 winning (
pyppeteer/pyppeteer - Headless chrome/chromium automation library (unofficial port of puppeteer)
monosans/proxy-scraper-checker - HTTP, SOCKS4, SOCKS5 proxies scraper and checker with rich functionality.
pixelbubble/PasteMonitor - Scrape Pastebin API to collect daily pastes, setup a wordlist and be alerted by email when you have a match.
mikf/gallery-dl - Command-line program to download image galleries and collections from several image hosting sites
shacojx/CVE-2021-26855-exploit-Exchange -
RickGeex/ProxyLogon - ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin. We have al
rly0nheart/thedevilseye - The Devils Eye is an OSINT tool that extracts onion links and descriptions that match with the users query from the Darkweb, without requiring the use for Tor.
ktecv2000/ProxyShell - ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)
Jumbo-WJB/Exchange_SSRF - Some Attacks of Exchange SSRF ProxyLogon&ProxyShell
maguowei/starred - creating your own Awesome List by GitHub stars!
RhinoSecurityLabs/Security-Research - Exploits written by the Rhino Security Labs team
mr-r3bot/Proxyshell-Exchange - Poc script for ProxyShell exploit chain in Exchange Server
Ridter/proxyshell_payload - proxyshell payload generate
Udyz/proxyshell-auto - Automatic ProxyShell Exploit
Sunlight-Rim/FTPSearcher - Asynchronous file scanner and downloader for FTP servers. Also takes IP ranges.
Sunlight-Rim/SQLbit - Just another script for automatize boolean-based blind SQL injections. (Demo)
SecurityRiskAdvisors/msspray - Password attacks and MFA validation against various endpoints in Azure and Office 365
MarkoH17/EmailSecCheck - EmailSecCheck is a lightweight Python utility used to check for common SPF/DMARC misconfigurations that may allow for email spoofing.
MarkoH17/Spray365 - Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypas
WangYihang/GitHacker - 🕷️ A .git folder exploiting tool that is able to restore the entire Git repository, including stash, common branches, common tags.
WangYihang/SourceLeakHacker - 🐛 A multi threads web application source leak scanner
hosch3n/ProxyVulns - [ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-31207
herwonowr/exprolog - ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)
Udyz/Proxylogon - ProxyLogon Pre-Auth SSRF To Arbitrary File Write
dmaasland/proxyshell-poc -
demossl/CVE-2021-33766-ProxyToken - CVE-2021-33766-poc
phamphuqui1998/CVE-2021-34473 - CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability
but43r/ProxyShell - ProxyShell Scanner
abatchy17/WindowsExploits - Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
cyberheartmi9/CVE-2017-8295 -
cyberheartmi9/Proxyshell-Scanner - nuclei scanner for proxyshell ( CVE-2021-34473 )
gwen001/myrecon.py - My recon script
D4Vinci/bugz-tools - A collection of tools I wrote for bug bounty or hacking and don't mind publishing it 😄
fullhunt/log4j-scan - A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
hausec/ProxyLogon -
praetorian-inc/enumerate-iam - Enumerate the permissions associated with AWS credential set
praetorian-inc/proxylogon-exploit - Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.
sweetsoftware/Ares - Python botnet and backdoor
dfirsec/blacklist_check - Simple script to download and query IP address reputation lists from various sources.
jgamblin/isthisipbad - Python Script to Check IP Against Blacklist
chompie1337/SMBGhost_RCE_PoC -
Josue87/EmailFinder - Search emails from a domain through search engines
dievus/Oh365UserFinder - Python3 o365 User Enumeration Tool
0xZDH/o365spray - Username enumeration and password spraying tool aimed at Microsoft O365.
gremwell/o365enum - Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover v1, or office.com login page.
dinosn/proxyshell - A basic proxylogon scanner
Udyz/Automatic-Proxylogon-Exploit - Automatic OWA Proxylogon Exploit
bdunlap9/query - Python3 query through all text files in current directory for certain strings and then print the full line that string was found in
whittlem/pycryptobot - Python Crypto Bot (PyCryptoBot)
pwn0sec/Pwnscan - Shalfa is a simple tool that helps you with Extract URLs.
MikeMeliz/TorCrawl.py - Crawl and extract (regular or onion) webpages through TOR network
danieleperera/OnionIngestor - An extendable tool to Collect, Crawl and Monitor onion sites on tor network and index collected information on Elasticsearch
Haru1ca/MailAccessAccountChecker -
extremedevalt/ExtremeAIO-Free-25-Modules-ALL-IN-ONE - Python 3x AIO, for free, open source!
extremedevalt/Minecraft-Checker-Mail-Access-Checker - Minecraft Account Checker (new api) | Mail Access Checker | Python 3x
p0isonBR/Mail-Access - Mail-Access checker
memorycrashed/Mail-Access-Checker - A basic mail access checker that also searches for keywords
h3x0crypt/Medusa - SMTP checker to check Mail Access via SMTP
extremedevalt/Mail-Access-Checker - Mail Access Checker by ExtremeDev | Python 3x | https proxies
extremedevalt/BingOX - Bing Parser.
redhuntlabs/BurpSuite-Asset_Discover - Burp Suite extension to discover assets from HTTP response.
ustayready/fireprox - AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
scopes1337/Playstation-Bruteforcer-Giftcard -
KevinLage/Edu-Account-creator -
maajtga/fetch-reciept-generator - Generate receipts using python for Fetch Rewards.
Ares-X/Google-Hacking-Database - Google Hacking Database
AngelSecurityTeam/Security-Admin - Finder Web Site Admin Login Page
mpgn/BEAST-PoC - 💪 Proof Of Concept of the BEAST attack against SSL/TLS CVE-2011-3389 💪
0xZDH/Omnispray - Modular Enumeration and Password Spraying Framework
JoelGMSec/FakeDataGen - Full Valid Fake Data Generator
tranthanhbinh2603/Office365Checker - This tool supports check Office 365 Accounts at high speed. You could build and use immediately. You will need install python to run this program.
nizarbamida/MSPID - A bulk miscrosoft products (Office,Win,Visio...) keys generator and checker.
hirusha-adi/NordVPN-Checker - check NordVPN accounts. STRICTLY FOR EDUCATIONAL PURPOSES ONLY!
tamimibrahim17/List-of-user-agents - List of major web + mobile browser user agent strings. +1 Bonus script to scrape :)
onemanbuilds/ComboAIO - Simple tool which can be used to edit combo files / text files.
hassan0x/MailHunter - MailHunter is a tool to give you access to the exchange server mails.
DrPython3/MailRipV3 - SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.
justinjohnso/giftcards_galore - Python script to automate buying Amazon giftcards
RhinoSecurityLabs/CVEs - A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
RhinoSecurityLabs/IPRotate_Burp_Extension - Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
ultrafunkamsterdam/AnonSurf - Change your IP address instantly - easy small GUI tool for Windows (linux soon)
ultrafunkamsterdam/undetected-chromedriver - Custom Selenium Chromedriver | Zero-Config | Passes ALL bot mitigation systems (like Distil / Imperva/ Datadadome / CloudFlare IUAM)
SharonBrizinov/s3viewer - Publicly open storage viewer (Amazon S3 Bucket, Azure Blob, FTP server, HTTP Index Of/)
YashvirGaming/User-Pass-Combo-Extractor - This script contains code to convert your bulk email-pass combolist into userpass!
UnknownSourceCode/GiftCardGenerator - This is Python Random GiftCard Generator
7jdope8/AmazonGiftcard - amazon giftcard generator + Checekr
x-name15/Another-GiftCards-Bot - This is a another Discord Giftcards Generator Bot
Sheikhlipu123/MultipleGiftCardGenerator-3.0 - Python Random GiftCard Generator
vektort13/AntiOS - Pyhton scripts that can change your Windows fingerprints and ID
Jian-Wuyou/twitter-image-scraper -
bellingcat/telegram-phone-number-checker - This script lets you check whether a specific phone number is connected to a Telegram account.
matamorphosis/Scrummage - The Ultimate OSINT and Threat Hunting Framework
horizon3ai/proxyshell - Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207
horizon3ai/CVE-2021-38647 - Proof on Concept Exploit for CVE-2021-38647 (OMIGOD)
IlanKalendarov/PyHook - PyHook is an offensive API hooking tool written in python designed to catch various credentials within the API call.
Malam-X/Bin-Checker - Bin Credit card Checker using python
blacklanternsecurity/TREVORspray - TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
bee-san/pyWhat - 🐸 Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is! 🧙‍♀️
ShutdownRepo/Exegol - Fully featured and community-driven hacking environment
pawlaczyk/sarenka - OSINT tool - gets data from services like shodan, censys etc. in one app
Aron-Tn/Amazon_Checker - Amazon Email Valid Checker V2 With Proxies By ARON-TN
Nickwasused/Nickwasuseds-Combo-Generator - a Combolist Generator
Ha3MrX/HashCrack - hashcrack is a python script which uses online hash crackers to find cleartext of a hash in less than 3 seconds
Nickwasused/dnoise - DNS noise generator that looks at your network activity and blends in. Requires pi-hole.
geekforbrains/agcod - Amazon Gift Codes On-Demand (AGCOD)
HoverHell/RedditImageGrab - Downloads images from sub-reddits of reddit.com.
tsarjak/DownloadRedditImages - Easily download all the images from any subreddit (also select sort_type if you want hot/top/new/controversial, and also sort_time day/week/month/year/all). Randomly select downloaded images and set a
aliparlakci/bulk-downloader-for-reddit - Downloads and archives content from reddit
jonbakerfish/TweetScraper - TweetScraper is a simple crawler/spider for Twitter Search without using API
bisguzar/twitter-scraper - Scrape the Twitter Frontend API without authentication.
EntySec/Shreder - Shreder is a powerful multi-threaded SSH protocol password brute-force tool.
EntySec/CamOver - CamOver is a camera exploitation tool that allows to disclosure network camera admin password.
EntySec/HatVenom - HatVenom is a powerful payload generation tool that provides support for all common platforms and architectures.
EntySec/HatSploit - Modular penetration testing platform that enables you to write, test, and execute exploit code.
EntySec/RomBuster - RomBuster is a router exploitation tool that allows to disclosure network router admin password.
EntySec/CamRaptor - CamRaptor is a tool that exploits several vulnerabilities in popular DVR cameras to obtain network camera credentials.
Ramalingasamy012/admin-finder - This tool is used to find the admin login page of a website.
lstomberg/BHNVGCBalanceChecker - Check remaining balance of your Blackhawk Network Visa gift cards
TebbaaX/GRecon - Another version of katana, more automated but less stable. the purpose of this small tool is to run a Google based passive recon against your scope.
KingOfBugbounty/Bug-Bounty-Toolz - BBT - Bug Bounty Tools
GerbenJavado/LinkFinder - A python script that finds endpoints in JavaScript files
DIGITALCRIMINAL/OnlyFans - Scrape all the media from an OnlyFans account - Updated regularly
MAXECU/Nordvpn-Proxy-List -
privatekenny/netnut.io-proxy-creator -
Ell10T4lD3rS0n/OBRecaptcha - Script Python qui permet de savoir si le recaptcha v3 d'un site est bypassable et si bypassable il génère un txt avec du loliscript idéal pour Openbullet v1
r3dxpl0it/ZombieBotV12 - Zombie Bot from Darkweb
p0wershe11/ProxyLogon - ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)
D4stiny/Dell-Support-Assist-RCE-PoC -
Sh4rk0-666/Spykeyboard - keylogger which sends us the data to our gmail.
Sh4rk0-666/DelvedLeak - DelvedLeak is a tool which will allow us to collect information about an email through data breaches. Through OSINT we can obtain information from an email such as possible leaked passwords, sources b
quentinhardy/odat - ODAT: Oracle Database Attacking Tool
SecuraBV/CVE-2020-1472 - Test tool for CVE-2020-1472
ZecOps/CVE-2020-0796-LPE-POC - CVE-2020-0796 Local Privilege Escalation POC
0x09AL/WordSteal - This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does not keep responsibility for any illegal action you do.
joaovdonaton/hashcracker - python hash cracker
Ciphey/Ciphey - ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
gl4ssesbo1/Nebula - Nebula is a cloud C2 Framework, which at the moment offers reconnaissance, enumeration, exploitation, post exploitation on AWS, but still working to allow testing other Cloud Providers and DevOps Comp
duo-labs/secret-bridge - Monitors Github for leaked secrets
DavidMGilbert/btc-hack - An automated bitcoin wallet generator that brute forces random wallet addresses by checking their balance in real-time using an online API .
Anarbb/BitGen - Bitcoin wallet generator and scrapper
akx/walletool - a tool for reading wallet.dat files
0xred/HashMaster -
eslam3kl/3klCon - Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.
ZephrFish/CVE-2021-22986_Check - CVE-2021-22986 Checker Script in Python3
Udyz/CVE-2020-7961-Mass - CVE-2020–7961 Mass exploit for Script Kiddies
Udyz/CVE-2021-22986-SSRF2RCE - F5 BIG-IP/BIG-IQ iControl Rest API SSRF to RCE
Al1ex/CVE-2021-22986 - CVE-2021-22986 & F5 BIG-IP RCE
megadose/holehe - holehe allows you to check if the mail is used on different sites like twitter, instagram and will retrieve information on sites with the forgotten password function.
r4v10l1/python-bruteforcer - Bruteforce logins with python
0xSearches/sandcastle - 🏰 A Python script for AWS S3 bucket enumeration.
rm1984/IMAPLoginTester - A simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.
prozaqq/mongol - A MongoDB no authentication scanner and enumerator
Ettack/MongoScan - MongoDB Connection Scanner for Pentesters
stampery/mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥
Accenture/jenkins-attack-framework -
instantbox/instantbox - 📦 Get a clean, ready-to-go Linux box in seconds.
cyberark/BlobHunter - Find exposed data in Azure with this public blob scanner
adrijano/Bitcoin-wallet-cracker - Automated Bitcoin wallet generator that with mnemonic and passphrases bruteforces wallet addresses
m8sec/nullinux - Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.
DreyAnd/maian-cart-rce - Maian Cart 3.8 preauth RCE exploit
kakamband/WPKiller - CVE-2020-25213 Wordpress File Manager 6.7 Plugin 0day exploit
guy-liu/yith-giftdrop - Exploit for the Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards Premium
infecting/phone-poc - Proof of concept for a bot that checks gift card balances in mass via Plivo. Includes basic features for configuration. I do not associate with any misuse.
stevenmirabito/balance-check - Check gift card balances for a variety of providers
Aron-Tn/Smtp-cracker - [NEW] : Simple Mail Transfer Protocol (SMTP) CHECKER - CRACKER Tool V2
gg2001/Hatch - Web brute-force tool
exp101t/simple-stealer - Simple Google Chrome stealer, sends passwords via Telegram into private channel
PuredNulled/Olgas-Kitchen-Giftcard-Checker - Checks randomly generated codes to see if there is balance on them for Olga's Kitchen
paysafecard/paysafecard-rest_api-PYTHON - paysafecard sample codes for the REST API in PYTHON. Payment, Payout, Refund
Mankey/GolfNow-Giftcard-Generator - Simple GolfNow Giftcard Generator
rip/Vanilla-Card-Balance-Checkers - Vanilla Card Balance Checkers
hanklikesmatcha/text-files-comparison -
hanklikesmatcha/sot-python-bootcamp-2021 -
jjaacckk/NordVPN-SOCKS5-Python-Proxy -
Kontiarkade/NordVPN_proxy_list -
hakanonymos/steal-chrome-password-all-version - Python steal chrome password all version browser are supported 100 % FUD
Bitwise-01/Instagram- - Bruteforce attack for Instagram
IAmBlackHacker/Facebook-BruteForce - Bruteforce attack on Facebook account using python script
r4v10l1/python-dehasher - Uses https://md5decrypt.net/en/Api/ to dehash MD5 hashes. Multiple hash version available!
mrh0wl/Cloudmare - Cloudflare, Sucuri, Incapsula real IP tracker.
m0rtem/CloudFail - Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
christophetd/CloudFlair - 🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.
0xInfection/XSRFProbe - The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
Tuhinshubhra/dirscraper - OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.
random-robbie/InfiniteWP-exploit - InfiniteWP Client < 1.9.4.5 - Authentication Bypass
six2dez/degoogle_hunter - Simple fork from degoogle original project with bug hunting purposes
faizann24/XssPy - XssPy - Web Application XSS Scanner
epsylon/xsser - Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
pwn0sec/PwnXSS - PwnXSS: Vulnerability (XSS) scanner exploit
ungoogled-software/ungoogled-chromium - Google Chromium, sans integration with Google
PaytmLabs/nerve - NERVE Continuous Vulnerability Scanner
aungsanoo/auto-sql-dork-scanner -
mohitsahunitrr/ICG-AutoExploiterBoT - AutoExploiter Wordpress , Joomla , Drupal
r0oth3x49/wp-gravity-form-exploit - WordPress Gravity Forms Plugin 1.8.19 - Arbitrary File Upload
tristanlatr/WPWatcher - Wordpress Watcher is a wrapper for WPScan that manages scans on multiple sites and reports by email and/or syslog. Schedule scans and get notified when vulnerabilities, outdated plugins and other risk
BishopFox/h2csmuggler - HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
opencve/opencve - CVE Alerting Platform
50r4/ghostbin-bruteforce-and-checker - This is my first brute force with python, which is used to create random ghostbin links, and check if they are valid
onemanbuilds/EmailAccessChecker -
adrienluitot/surfshark-linux-client - Surfshark Linux Client is simply a client for Linux for the VPN SurfShark. It’s made with python 3 and PyGObject (GTK).
Aron-Tn/0day-elFinder-2020 - Zero-Day Vulnerability in File Manager Plugin 6.7 ( CVE 2020-25213 )
temadol/gmail_generator - python Script to generate Gmail accounts with SMS verification, written with Selenium and requests
hanklikesmatcha/gift-cards-generator -
ramy-zemo/GiftCard-Generator - A simple fake coupon generator which is easily extensible
alifathi-h1/gh_scanner - GH Scanner Tool is written in Python3 and designed for penetration testers and bug bounty hunters to scan Organization/User repositories for leaks such as GitHub Token, AWS Access Keys, Slack Webhooks
rctatman/xml-to-json - A little Python 3 utility script to convert .xml to .json
Leoid/CVE-2019-0708 - Only Hitting PoC [Tested on Windows Server 2008 r2]
iDavidef/python-getsmscode-api - Python3 class for getsmscode.com's APIs
josh0xA/darkdump - Search The Deep Web Straight From Your Terminal
sonya75/NikeAccountGenerator - Script to generate verified Nike+ accounts using getsmscode.com
Jason-S-Wu/IPVanish-Socks5-Proxy-Gen - A simple program that appends your IPVanish Socks5 login useful for sneaker bots
1N3/Wordpress-XMLRPC-Brute-Force-Exploit - Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield
BigNerd95/Chimay-Red - Working POC of Mikrotik exploit from Vault 7 CIA Leaks
nicolas-carolo/houndsploit - An advanced graphical search engine for Exploit-DB
onemanbuilds/OpenBulletConfigTool - This is a simple tool for openbullet configs
imWildCat/scylla - Intelligent proxy pool for Humans™
nityanandagohain/proxy_configuration - System wide proxy configuration in a single script with options to add, remove proxy and restore system default proxy configuration
priyamharsh14/Prawler - Advance Proxy Scraper written in Python3
z-labs/NordVPNQuickConnect - Desktop application that replaces the NordVPN command line interface (CLI) for linux machines
Amirtyper/NordVpn_Checker - Cracker NordVpn Full Capture And ProxyLess 2022 !!
cdown/tzupdate - Set the system timezone based on IP geolocation
AnuragSinghKushwah/anonymous-scraping - Anonymous Web Scraping using Python, Selenium, Free Proxy and Paid Proxies (luminati)
pry0cc/ProxyDock - ProxyDock is a Dockerfile and Bash script that converts your OpenVPN files into local proxies.
Ibonok/cassandra_scan - Scan an apache cassandra database and dump some data
lapolis/ScavengingTheScavenger - Lazy way to gather dumped credentials.
TeamMsgExtractor/msg-extractor - Extracts emails and attachments saved in Microsoft Outlook's .msg files
opsdisk/cloud_metadata_extractor - Cloud metadata extraction tools and scripts
DotNetRussell/MinerInTheMiddle - This application was created as a POC for how to scan your local network traffic for HTTP requests and then inject various javascript cryptocurrency miners into the response payloads
Shashank-In/TravisLeaks - A tool to find sensitive keys and passwords in Travis logs
Mili-NT/DataHound - A bot to scan for insecure or public FTP instances using Shodan or Masscan
aqhmal/CVE-2020-5902-Scanner - Automated script for F5 BIG-IP scanner (CVE-2020-5902) using hosts retrieved from Shodan API.
aqhmal/mysql_bruteforce - Python3 MySQL brute force script.
d34db33f-1007/grayhat2 - Python tool to find specific files in exposed AWS S3 servers.
ghostlulzhacks/waybackSqliScanner -
almandin/fuxploider - File upload vulnerability scanner and exploitation tool.
itsmehacker/DarkScrape - OSINT Tool For Scraping Dark Websites
hannob/snallygaster - Tool to scan for secret files on HTTP servers
xHak9x/fbi - Facebook Information
spuqe/firebase - Firebase database finder.
N1ckDunn/Exploitivator - Automate Metasploit scanning and exploitation
gyoisamurai/GyoiThon - GyoiThon is a growing penetration test tool using Machine Learning.
ghostlulzhacks/crawler - Crawl website extract links
dadi32/PhoneSploit - Using open Adb ports we can exploit a devive
bb00/zer0dump - Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
VoidSec/CVE-2020-1472 - Exploit Code for CVE-2020-1472 aka Zerologon
risksense/zerologon - Exploit for zerologon cve-2020-1472
dirkjanm/CVE-2020-1472 - PoC for Zerologon - all research credits go to Tom Tervoort of Secura
th3unkn0n/TeleGram-Scraper - telegram group scraper tool. fetch all information about group members
infobyte/faraday - Open Source Vulnerability Management Platform
stamparm/DSSS - Damn Small SQLi Scanner
delvelabs/batea - AI-based, context-driven network device ranking
sdnewhop/grinder - 🔎 Python framework to automatically discover and enumerate hosts from different back-end systems (Shodan, Censys)
devanshbatham/ParamSpider - Mining parameters from dark corners of Web Archives
mxrch/GHunt - 🕵️‍♂️ Offensive Google framework.
obheda12/GitDorker - A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
PeterWalchhofer/Telescrape - Telegram scraper for downloading messages, comment.bot/comment.app comments, users and photos
logr4y/tgscrape - Quick and dirty public Telegram group message scraper
joxeankoret/CVE-2017-7494 - Remote root exploit for the SAMBA CVE-2017-7494 vulnerability
betab0t/cve-2017-7494 - Proof-of-Concept exploit for CVE-2017-7494(Samba RCE from a writable share)
carlospolop/hacktricks - Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
hendrikbgr/YandexMail-Account-Creator - 🚀 Create hundreds of free YandexMail Email Accounts in the matter of minutes 🚀
Rounak40/Proxy-Scraper-and-Scanner -
1UC1F3R616/fastProxy - MultiThreaded Application to Scrape Working Web Proxies
TheSpeedX/socker - Checks SOCKS Proxy List To find Working Proxies
DEMON1A/GmailBruterV2 - Simple tool written in python3 to perform limited brute-force attacks on gmail accounts.
cerebnismus/smtplib-bruteforce - bruteforcing gmail (TLS/SSL)
alwaysminingbtc/plutushybrid -
importCTF/Instagram-Hacker - This is an advanced script for Instagram bruteforce attacks. WARNING THIS IS A REAL TOOL!
PyYoshi/cChardet - universal character encoding detector
nccgroup/ScoutSuite - Multi-Cloud Security Auditing Tool
Gr4y-r0se/Athena - Dehashed API CLI
pikpikcu/Pentest-Tools-Framework - Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabili
jimywork/djangohunter - Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.
Z4nzu/hackingtool - ALL IN ONE Hacking Tool For Hackers
rfunix/Pompem - Find exploit tool
thewhiteh4t/pwnedOrNot - OSINT Tool for Finding Passwords of Compromised Email Addresses
powerexploit/Ashok - Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .
j3ers3/Searpy - 🥀 Search Engine Tookit，URL采集、Favicon哈希值查找真实IP、子域名查找
Ucnt/aws-s3-webpage-searcher - Search webpages for content loaded from write-enabled or non-existent S3 buckets.
federella/sPY - a simple osint script to find shodan devices and public google cloud storage buckets matching a keyword
seru1us/DownCloud -
EranGoldman/s3Scanner - crawl the web for s3 links and then scan those buckets for interesting files
Ucnt/aws-s3-downloader - Download all files and XML list in a public Amazon AWS S3 bucket.
aljazceru/s3-bucket-scanner - Scanner for public s3 buckets
belane/CloudHunter - AWS, Azure and Google bucket scanner
dagrz/aws_pwn - A collection of AWS penetration testing junk
MindPointGroup/cloudfrunt - A tool for identifying misconfigured CloudFront domains
carnal0wnage/weirdAAL - WeirdAAL (AWS Attack Library)
sshuttle/sshuttle - Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
kinecosystem/xdrparser - Command line tool to unpack Stellar's history xdr files
H4CK3RT3CH/github-dorks -
mzarglis/DNS-Audit - Python script that takes a list of ips and will preform reverse lookup to resolve hostnames.
J0113/ProxyHuntr - GUI Proxy Finder and Checker writting in Python + PyQt.
pythonism/proxy-checker - The simple script, which checks good and bad proxies
jimywork/stretcher - Tool designed to help identify open Elasticsearch servers that are exposing sensitive information
aristocratos/bpytop - Linux/OSX/FreeBSD resource monitor
Cillian-Collins/Recon - The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration files, open directories and other potentially harmful files can be
Footsiefat/Footsiefat-OpenDirectoryIndexTool - It allows for searching through multiple OD's at once and includes file size and download speed in preview, also includes feature to get more OD's from a google search!
AllPentesting/AllIntelligence - Proyecto Hackathon Cybercamp 2019 - AllIntelligence nos permitirá tener una visión general de posibles vectores de ataque de una organización.
mashficool/coinAPI-Scrape -
iw4p/proxy-scraper - scrape proxies from more than 5 different sources and check which ones are still alive
danilopolani/rotating-proxy-python - Rotating proxy crawler in Python
constverum/ProxyBroker - Proxy [Finder | Checker | Server]. HTTP(S) & SOCKS 🎭
Yutixcode/Dolkings - Dorking google with python (easy) (support Termux)
trustedsec/cve-2019-19781 - This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
davidburkitt/python-secret-scanner -
ctxis/crackerjack - CrackerJack / Hashcat Web Interface / Context Information Security
ruped24/toriptables2 - Tor Iptables script is an anonymizer that sets up iptables and tor to route all services and traffic including DNS through the Tor network.
xajkep/wordlists - Infosec Wordlists
jordanpotti/CloudScraper - CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
citcheese/aws-s3-bruteforce - Amazon AWS S3 Bucket Name Bruteforce
citcheese/ODBParser - OSINT tool to search, parse and dump only the open Elasticsearch and MongoDB directories that have the data you care about exposing
citcheese/SqlParserPlus - convert SQL dumps and other leaked db dump formats to CSV
opsdisk/metagoofil - Search Google and download specific file types
opsdisk/theHarvester - A multithreaded rewrite of the classic theHarvester email address collection script.
TarlogicSecurity/kerbrute - An script to perform kerberos bruteforcing by using impacket
aydinnyunus/Keylogger - Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
dotjavafile/Simple-Dork-Scanner -
EnableSecurity/sipvicious - SIPVicious OSS has been around since 2007 and is actively updated to help security teams, QA and developers test SIP-based VoIP systems and applications.
Xpykerz/DorkScanner - Simple Tool To Find Vulnerable Sites Using Dork.
Xpykerz/Spotify-Checker - Mass Spotify Accounts Checker
behnambm/nordvpn-checker - A simple script to check NordVpn login
dorkerdevil/ImageTragick_exploit - Imagick RCE exploit poc tool
SilverPoision/PoC-s - Containing all the PoC's of last year on most famous bug bounty sites
utkusen/leviathan - wide range mass audit toolkit
viniciushenriqueti/LetMeFuckIt-Scanner - Scanner and Exploit for Magento 1.9
ambionics/magento-exploits - Exploits for Magento 2.3.0 and lower
incredibleindishell/Magento-shoplift-python-exploit - Magento shoplift exploit is vulnerability which was discovered by CheckPoint team (http://blog.checkpoint.com/2015/04/20/analyzing-magento-vulnerability/) This python script developed by joren but it
knassar702/scant3r - ScanT3r - Module based Bug Bounty Automation Tool
madhavmehndiratta/dorkScanner - A typical search engine dork scanner scrapes search engines with dorks that you provide in order to find vulnerable URLs.
LandGrey/pydictor - A powerful and useful hacker dictionary builder for a brute-force attack
0xDanielLopez/pwn_check - Checks if the given emails have been pwned.
Techno-Hwizrdry/checkpwnedemails - A command line tool to check if a single (or multiple) email addresses have been compromised.
equalitie/shodan_fingerprinter - Script fingerprinting systems based on shodan.io data
tenable/poc - Proof of Concepts
n0x08/ShodanTools - Collection of scripts & fingerprinting tricks for Shodan.io
n0x08/AllYourCloud - Data collection scripts for All Your Cloud Are Belong To Us conference talk
wormHole3001/shodan -
13o-bbr-bbq/machine_learning_security - Source code about machine learning and security.
AahmetTURGUT/FindOpenDatabase - Find open MongoDB and Elasticsearch databases details and get to Json
JLospinoso/memcachedump - Use your Shodan API Key to dump all the contents of exposed memcached servers.
imnikola/ShodanAnomymousDirs - FTP server crawler for anonymous login based on shodan
ivre/ivre - Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligenc
orleven/Tentacle - Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bu
davidfoerster/aptsources-cleanup - Detects and interactively deactivates duplicate Apt source entries and deletes sources list files without valid enabled source entries (as requested in https://askubuntu.com/a/762815/175814).
s0md3v/Silver - Mass scan IPs for vulnerable services
sharathunni/auto-recon-ng - Automated script to run all modules for a specified list of domains, netblocks or company name
Tuhinshubhra/CMSeeK - CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
anouarbensaad/vulnx - vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect security vulnerabilities CMS system. It can perform a quick CMS security detection, information collecti
ShielderSec/webtech - Identify technologies used on websites.
anantshri/DS_Store_crawler_parser - a parser + crawler for .DS_Store files exposed publically
mazen160/bfac - BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source code.
dmgbuild/ds_store -
m4ll0k/Atlas - Quick SQLMap Tamper Suggester
NullArray/DorkNet - Selenium powered Python script to automate searching for vulnerable web apps.
jaxBCD/Zeebsploit - web scanner - exploitation - information gathering
Ekultek/Zeus-Scanner - Advanced reconnaissance utility
Ekultek/WhatWaf - Detect and bypass web application firewalls and protection systems
ejedev/dorkhunter - Searches and tests SQL dorks to find vulnerable sites.
jaxBCD/Ultimate-Dork - Web Crawler
m4ll0k/SecretFinder - SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
0x27/shodan_key_checker - Quick script written for sorting and categorizing Shodan API keys acquired via scraping the internet.
umarfarook882/PyNessus_Generate_Activation_Code - Generate Multiple Nessus Activation Code using Temp Mail Service.
CITGuru/tempmail - A Python wrapper for online service which provides temporary email address: https://temp-mail.org/
bruderstein/PythonScript - Python Script plugin for Notepad++
notepad-plus-plus/nppPluginList - The official collection of Notepad++ plugins.
twintproject/twint - An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations.
donnemartin/awesome-aws - A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.
codingo/NoSQLMap - Automated NoSQL database enumeration and web application exploitation tool.
codingo/Reconnoitre - A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
random-robbie/My-Shodan-Scripts - Collection of Scripts for shodan searching stuff.
RUB-NDS/PRET - Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.
InQuest/omnibus - The OSINT Omnibus (beta release)
InQuest/ThreatIngestor - Extract and aggregate threat intelligence.
christophetd/censys-subdomain-finder - ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
dionach/CMSmap - CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
golismero/golismero - GoLismero - The Web Knife
linkchecker/linkchecker - check links in web documents or full websites
Cyb0r9/ispy - ispy V1.0 - Eternalblue(ms17-010)/Bluekeep(CVE-2019-0708) Scanner and exploit ( Metasploit automation )
ReddyyZ/URLBrute-Py - Tool to brute website sub-domains and dirs.
JehadAlqurashi/BlackDir-Framework - Web Application Vulnerability Scanner
UndeadSec/Idisagree - Control remote computers using discord bot and python 3.
sf197/hashboy-tool - a hash query tool
PortSwigger/google-hack - Burp Suite Extension providing Google Hacking Interface
EONRaider/blackhat-python3 - Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues invo
SusmithKrishnan/torghost - TorGhost is an anonymization script. TorGhost redirects all internet traffic through SOCKS5 tor proxy. DNS requests are also redirected via tor, thus preventing DNSLeak. The scripts also disables unsa
aas-n/spraykatz - Credentials gathering tool automating remote procdump and parse of lsass process.
BullsEye0/dorks-eye - Dorks Eye Google Hacking Dork Scraping and Searching Script. Dorks Eye is a script I made in python 3. With this tool, you can easily find Google Dorks. Dork Eye collects potentially vulnerable web pa
jullrich/pcap2curl - Read a packet capture, extract HTTP requests and turn them into cURL commands for replay.
indrajithi/tiny-web-crawler - A tiny web crawler in Python
s0md3v/Orbit - Blockchain Transactions Investigation Tool
N4rr34n6/uDork -
unix-ninja/infosec-pastebin-scraper - Scrape pastes from pastebin and archive them for review
nerrorsec/Google-Dorker - Automate dorking while doing bug bounty or other stuffs.
sleeyax/Chainforger - Proxy scraper for proxychains
n4xh4ck5/N4xD0rk - Listing subdomains about a main domain
taraslayshchuk/es2csv - Export from an Elasticsearch into a CSV file
brianwarehime/inSp3ctor - AWS S3 Bucket/Object Finder
MandConsultingGroup/Scylla - The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.
btc-room101/bitcoin-rnn - rnn/lstm to generate private keys from public keys of known high value
dan-v/bruteforce-bitcoin-brainwallet - Bruteforce dictionary attack on bitcoin brain wallets
Phildo/ethbrute - brute forces an ethereum wallet based on a list of passwords.
malwaredllc/byob - An open-source post-exploitation framework for students, researchers and developers.
arnaucube/coffeeMiner - collaborative (mitm) cryptocurrency mining pool in wifi networks
Ucnt/aws-s3-data-finder - AWS S3 Sensitive Data Search
khast3x/credmap - The Credential Mapper
dxa4481/truffleHogRegexes - These are the regexes that power truffleHog
sa7mon/S3Scanner - Scan for open S3 buckets and dump the contents
jhaddix/domain - Setup script for Regon-ng
infosec-au/altdns - Generates permutations, alterations and mutations of subdomains and then resolves them
nagwww/101-AWS-EC2-Hacks -
RhinoSecurityLabs/GCPBucketBrute - A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
RhinoSecurityLabs/ccat - Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.
RhinoSecurityLabs/cloudgoat - CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool
Isaacdelly/Plutus - An automated bitcoin wallet collider that brute forces random wallet addresses
Tylous/SniffAir - A framework for wireless pentesting.
AngelSecurityTeam/Cam-Hackers - Hack Cameras CCTV FREE
sc0tfree/mentalist - Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat an
4n4nk3/Wordlister - A simple wordlist generator and mangler written in Python 3.8.
hash3liZer/WiFiBroot - A Wireless (WPA/WPA2) Pentest/Cracking tool. Captures & Crack 4-way handshake and PMKID key. Also, supports a deauthentication/jammer mode for stress testing
Damian89/extended-xss-search - A better version of my xssfinder tool - scans for different types of xss on a list of urls.
am0nt31r0/OSINT-Search - Useful for digital forensics investigations or initial black-box pentest footprinting.
dionach/PhEmail - PhEmail is a python open source phishing email tool that automates the process of sending phishing emails as part of a social engineering test
skavngr/rapidscan - 🆕 The Multi-Tool Web Vulnerability Scanner.
ecthros/uncaptcha2 - defeating the latest version of ReCaptcha with 91% accuracy
Voulnet/barq - barq: The AWS Cloud Post Exploitation framework!
ultrasecurity/webkiller - Tool Information Gathering Write By Python.
kavishgr/xmlrpc-bruteforcer - An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)
clario-tech/s3-inspector - Tool to check AWS S3 bucket permissions
samhaxr/hackbox - HackBox is the combination of awesome techniques. [1] - Xss [2] - Exploits [3] - Subdomain scanner [4] - Whois Lookup [5] - SSRF Injection [6] - Nmap Auto banner [7] - Js Url parser [8] - Web Headers
sensepost/DET - (extensible) Data Exfiltration Toolkit (DET)
MuhammadKhizerJaved/Insecure-Firebase-Exploit - A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write
Turr0n/firebase - Exploiting misconfigured firebase databases
treebuilder/ipinfo - Script to quickly enrich an IP address
treebuilder/s3-mining - Code to check AWS S3 buckets
berzerk0/BEWGor - Bull's Eye Wordlist Generator - Does your password rely on predictable patterns of accessible info?
5h4d0wb0y/crackhash - Crackhash is a tool that try to crack different types of hashes using free online services.
5h4d0wb0y/socialbrute - It attempts to crack social networks using a brute force dictionary attack.
norksec/torcrack - A simple Tor enabled, multi-process SSH dictionary attack in Python3.
k4m4/dymerge - 🔓 A dynamic dictionary merger for successful dictionary based attacks.
MrHeathLedger/wordlist-generator -
initstring/lyricpass - Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.
emtunc/SlackPirate - Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace
jsvine/waybackpack - Download the entire Wayback Machine archive for a given URL.
dvopsway/datasploit - A tool to perform various OSINT techniques, aggregate all the raw data, visualise it on a dashboard, and facilitate alerting and monitoring on the data.
derv82/wifite -
clarketm/s3recon - Amazon S3 bucket finder and crawler.
ThoughtfulDev/EagleEye - Stalk your Friends. Find their Instagram, FB and Twitter Profiles using Image Recognition and Reverse Image Search.
medialab/ural - A helper library full of URL-related heuristics.
medialab/minet - A webmining CLI tool & library for python.
binux/pyspider - A Powerful Spider(Web Crawler) System in Python.
wireservice/csvkit - A suite of utilities for converting to and working with CSV, the king of tabular file formats.
Mili-NT/BinBot - A scraper written in python to scrape the public pastebin archive and filter with customizable and extensible YARA rules
cvandeplas/pystemon - Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
Dascienz/phpBB-forum-scraper - Python-based web crawlers for scraping phpBB forum posts.
rivermont/spidy - The simple, easy to use command line web crawler.
SmoZy92/Shodomain - Shodan subdomain finder
lclevy/firepwd - firepwd.py, an open source tool to decrypt Mozilla protected passwords
jordanpotti/AWSBucketDump - Security Tool to Look For Interesting Files in S3 Buckets
deepdivesec/GitMAD - Monitor, Alert, and Discover sensitive info and data leakage on Github.
eth0izzle/bucket-stream - Find interesting Amazon S3 Buckets by watching certificate transparency logs.
vfosterm/NordVPN-NetworkManager-Gui - A NordVPN GUI client for linux using the native Network Manager
morpheusthewhite/nordpy - A gui application to connect automatically to the recommended NordVPN server
jotyGill/openpyn-nordvpn - Easily connect to and switch between, OpenVPN servers hosted by NordVPN on Linux (+patch leakes)
pwr-Solaar/Solaar - Linux device manager for Logitech devices
wavestone-cdt/wavecrack - Wavestone's web interface for password cracking with hashcat
mIcHyAmRaNe/PUPI - 🛅 Passwords using personal information
mIcHyAmRaNe/okadminfinder3 - [ Admin panel finder / Admin Login Page Finder ] ¢σ∂є∂ ву 👻 (❤-❤) 👻
blueudp/Deep-Explorer - Deep Explorer is a ( 1 day developed ) tool made in python which purpose is the search of hidden services in tor network, using Ahmia Browser and crawling the links obtained
iojw/socialscan - Python library and CLI for accurately querying username and email usage on online platforms
c0rv4x/project-black - Pentest/BugBounty progress control with scanning modules
Starwarsfan2099/Python-Hash-Cracker - Python Hash Cracker.
tegal1337/NekoBotV1 - NekoBot | Auto Exploiter With 500+ Exploit 2000+ Shell
TebbaaX/Katana - Python Tool that gives you the ability to run Advanced Google Queries (Known as Google Dorks - Google Dorking) - (No longer maintained)
hexway/r00kie-kr00kie - PoC exploit for the CVE-2019-15126 kr00k vulnerability
nxnjz/unhashit - Simple Script to query hash databases APIs
tatanus/SPF - SpeedPhishing Framework
Greenwolf/social_mapper - A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)
Nekmo/dirhunt - Find web directories without bruteforce
Viralmaniar/Passhunt - Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.
sameera-madushan/InstaSave - Python script to download images, videos & profile pictures from Instagram.
3xploit-db/Pentest-Tools-Framework - Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabili
tarunkant/fuzzphunc - This repo contains the lazyFuzzer and the Report on the output from the same
cujanovic/Content-Bruteforcing-Wordlist - Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
cujanovic/SSRF-Testing - SSRF (Server Side Request Forgery) testing resources
swisskyrepo/SSRFmap - Automatic SSRF fuzzer and exploitation tool
xillwillx/skiptracer - OSINT python webscaping framework
SimplySecurity/SimplyEmail - Email recon made fast and easy, with a framework to build on
darkmatter0/PyGLE - Python Wigle API originally by Jamie Bull
knownsec/ZoomEye-python - ZoomEye-python: The official Python library and CLI by Knownsec 404 Team.
censys/censys-python - An easy-to-use and lightweight API wrapper for Censys APIs.
BaiqingL/AWSY - Are.We.Secure.Yet Framework aims to test the wifi security of a location, attempting to locate individual devices
mgp25/Probe-Hunter - Probe Request sniffer + Wigle
misterch0c/shadowbroker - The Shadow Brokers "Lost In Translation" leak
martinvigo/voicemailautomator - A tool that serves as a Proof of Concept for the research I presented at DEF CON 26, "Compromising online accounts by cracking voicemail systems"
Guake/guake - Drop-down terminal for GNOME
1N3/BlackWidow - A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
DedSecInside/TorBot - Dark Web OSINT Tool
automatingosint/osint_public -
Porchetta-Industries/CrackMapExec - A swiss army knife for pentesting networks
GoSecure/freshonions-torscraper - Fresh Onions is an open source TOR spider / hidden service onion crawler
sherlock-project/sherlock - 🔎 Hunt down social media accounts by username across social networks
GoSecure/pyrdp - RDP monster-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact
arthastang/Router-Exploit-Shovel - Automated Application Generation for Stack Overflow Types on Wireless Routers
abhisharma404/vault - swiss army knife for hackers
brutemap-dev/brutemap - Let's find someone's account
s0md3v/XSStrike - Most advanced XSS scanner.
sc1341/InstagramOSINT - An Instagram Open Source Intelligence Tool
defaultnamehere/cookie_crimes - Read local Chrome cookies without root or decrypting
BishopFox/GitGot - Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
BishopFox/zigdiggity - A ZigBee hacking toolkit by Bishop Fox
HatBashBR/ShodanHat - search for hosts info with shodan
shantnu/RedditBot -
droberson/pastebin-scrape - Utilize Pastebin's scraping API to find interesting pastes.
mikewilks/simple-pastebin-monitor - A simple pastebin monitor using the scraping API
laramies/metagoofil - Metadata harvester
laramies/theHarvester - E-mails, subdomains and names Harvester - OSINT
secworld/theHarvester - E-mail, subdomain and people names harvester
secworld/Breach-Miner - A tool to harvest credentials from leaked data dump
shogunlab/Gitformant - OSINT tool for discovering confidential data leaked on Github.
beamzer/pastebin-monitor-and-alert - A pastebin monitor using the scraping API with pushover alerts
DataSploit/datasploit - An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.
pry0cc/pdf-get - A badass grabbing tool for getting PDF's of books.
Mili-NT/Keyring - A tool to spider Github or search URLs for various information leaks
CIRCL/AIL-framework - AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
hyp3ri0n-ng/scylla - scylla.sh db dumps and more
skickar/LAOSINT - OSINT programs using open data from the city of Los Angeles
microsoft/cascadia-code - This is a fun, new monospaced font that includes programming ligatures and is designed to enhance the modern look and feel of the Windows Terminal.
sham00n/waybulk - Search a list of domains on the wayback machine
UnkL4b/GitMiner - Tool for advanced mining for content on Github
byt3bl33d3r/SprayingToolkit - Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient
Lookyloo/lookyloo - Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.
PBDataRecon/PBDataRecon - Pastebin Analysis and Storage Tool
tweepy/tweepy - Twitter for Python!
techgaun/github-dorks - Find leaked secrets via github search
joaopsys/NowCrawling - A web crawler that will help you find files and lots of interesting information.
saeeddhqan/Maryam - Maryam: Open-source Intelligence(OSINT) Framework
SafeNetIS/Ahadu - Generate a password list for brute force attacks based on list of words provided
blueudp/DorkMe - [WORKING IN V2, WITH PROXIES, CUSTOM USER AGENT... TO MUCH BETTER!]DorkMe is a tool designed with the purpose of making easier the searching of vulnerabilities with Google Dorks, such as SQL Injection
ztgrace/changeme - A default credential scanner.
Matrix07ksa/Brute_Force - Brute_Force_Attack Gmail Hotmail Twitter Facebook Netflix
aboul3la/Sublist3r - Fast subdomains enumeration tool for penetration testers
guelfoweb/knock - Knock Subdomain Scan
hisxo/gitGraber - gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
SofianeHamlaoui/Lockdoor-Framework - 🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources
Telefonica/HomePWN - HomePwn - Swiss Army Knife for Pentesting of IoT Devices
BullsEye0/ghost_eye - Ghost Eye Informationgathering Footprinting Scanner and Recon Tool Release. Ghost Eye is an Information Gathering Tool I made in python 3. To run Ghost Eye, it only needs a domain or ip. Ghost Eye can
vesche/scanless - online port scan scraper
utiso/dorkbot - Command-line tool to scan Google search results for vulnerabilities
Viralmaniar/Wifi-Dumper - This is an open source tool to dump the wifi profiles and cleartext passwords of the connected access points on the Windows machine. This tool will help you in a Wifi penetration testing. Furthermore,
swisskyrepo/PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
googleprojectzero/iOS-messaging-tools -
taspinar/twitterscraper - Scrape Twitter for Tweets
s0md3v/goop - Google Search Scraper
f0cker/crackq - CrackQ: A Python Hashcat cracking queue system
BullsEye0/shodan-eye - Shodan Eye This tool collects all the information about all devices directly connected to the internet using the specified keywords that you enter. Author: Jolanda de Koff
drygdryg/OneShot - Run WPS PIN attacks (Pixie Dust, online bruteforce, PIN prediction) without monitor mode with the wpa_supplicant
BlackArch/wordlistctl - Fetch, install and search wordlist archives from websites and torrent peers.
securing/DumpsterDiver - Tool to search secrets in various filetypes.
PortSwigger/asset-discovery - Burp Suite extension to discover assets from HTTP response.
thehackingsage/bughunter - Tools for BugHunting
timbo05sec/autocrack - Hashcat wrapper to help automate the cracking process
SmeegeSec/HashTag - Password Hash Identification
psypanda/hashID - Software to identify the different types of hashes -
SUP3RIA/Atlantr - Fastes Email:Pass Checker on the planet.
kevthehermit/PasteHunter - Scanning pastebin with yara rules
kahunalu/pwnbin - Python Pastebin Webcrawler that returns list of public pastebins containing keywords
Mebus/cupp - Common User Passwords Profiler (CUPP)
nsonaniya2010/SubDomainizer - A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.
lanmaster53/recon-ng - Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.
m4ll0k/Infoga - Infoga - Email OSINT
screetsec/BruteSploit - BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used
s0md3v/Striker - Striker is an offensive information and vulnerability scanner.
needmorecowbell/sniff-paste - Pastebin OSINT Harvester
sham00n/buster - An advanced tool for email reconnaissance
D4Vinci/Cr3dOv3r - Know the dangers of credential reuse attacks.
shodansploit/shodansploit - 🔎 shodansploit > v1.3.0
malwaredllc/bamf - A tool which utilizes Shodan to detect vulnerable IoT devices.
bhavsec/reconspider - 🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.
calebmadrigal/trackerjacker - Like nmap for mapping wifi networks you're not connected to, plus device tracking
jaykali/hackerpro - All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog
SigPloiter/HLR-Lookups - Locating Roaming location of a number, and collecting msisdn and opeartor related infromation (IMSI, HLR GT, MSC GT)
0xbharath/censys-enumeration - A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
savio-code/fern-wifi-cracker - Automatically exported from code.google.com/p/fern-wifi-cracker
derv82/wifite2 - Rewrite of the popular wireless network auditor, "wifite"
kimocoder/gerix-wifi-cracker - GUI wireless 802.11 penetration tool
r3vn/badKarma - network reconnaissance toolkit
laincode/shodan-seeker - Command-line tool using Shodan API. Generates and downloads CSV results, diffing of historic scanning results, alerts and monitoring of specific ports/IPs, etc.
6e726d/wig-ng - WIG (WiFi Information Gathering) is a free and open source utility for WiFi device fingerprinting.
martinvigo/email2phonenumber - A OSINT tool to obtain a target's phone number just by having his email address
eth0izzle/cracke-dit - cracke-dit ("Cracked It") makes it easier to perform regular password audits against Active Directory environments.
Greenwolf/social_attacker - An Open Source Multi Site Automated Social Media Phishing Framework
superhedgy/AttackSurfaceMapper - AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
sensepost/objection - 📱 objection - runtime mobile exploration
rsmusllp/king-phisher - Phishing Campaign Toolkit
fkasler/dolos_cloak - Automated 802.1x Bypass
threat9/routersploit - Exploitation Framework for Embedded Devices
itsmehacker/CardPwn - OSINT Tool to find Breached Credit Cards Information
Ekultek/WhatBreach - OSINT tool to find breached emails, databases, pastes, and relevant information
trustedsec/hate_crack - A tool for automating cracking methodologies through Hashcat from the TrustedSec team.
jofpin/trape - People tracker on the Internet: OSINT analysis and research tool by Jose Pino
Acceis/leakScraper - LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering
sqlmapproject/sqlmap - Automatic SQL injection and database takeover tool
NullArray/AutoSploit - Automated Mass Exploiter
thehackingsage/hacktronian - Tools for Pentesting
Marten4n6/EvilOSX - An evil RAT (Remote Administration Tool) for macOS / OS X.
khast3x/h8mail - Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
v3n0m-Scanner/V3n0M-Scanner - Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Viralmaniar/SMWYG-Show-Me-What-You-Got - This tool allows you to perform OSINT and reconnaissance on an organisation or an individual. It allows one to search 1.4 Billion clear text credentials which was dumped as part of BreachCompilation l
Viralmaniar/Powershell-RAT - Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen c
romanzaikin/BurpExtension-WhatsApp-Decryption-CheckPoint - This tool was created during our research at Checkpoint Software Technologies on Whatsapp Protocol (This repository will be updated after BlackHat 2019)
initstring/cloud_enum - Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
davidtavarez/pwndb - Search for leaked credentials
s0md3v/Hash-Buster - Crack hashes in seconds.
khast3x/Offensive-Dockerfiles - Offensive tools as Dockerfiles. Lightweight & Ready to go
thewhiteh4t/FinalRecon - The Last Web Recon Tool You'll Need
s0md3v/Photon - Incredibly fast crawler designed for OSINT.
k4m4/kickthemout - 💤 Kick devices off your network by performing an ARP Spoof attack.
n1nj4sec/pupy - Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python
rndinfosecguy/Scavenger - Crawler (Bot) searching for credential leaks on paste sites.
xakepnz/BLUELAY - Searches online paste sites for certain search terms which can indicate a possible data breach.
n1nj4sec/LaZagne - Credentials recovery project
Manisso/fsociety - fsociety Hacking Tools Pack – A Penetration Testing Framework
magnumripper/net-creds - Sniffs sensitive data from interface or pcap
instaloader/instaloader - Download pictures (or videos) along with their captions and other metadata from Instagram.
smicallef/spiderfoot - SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
ScriptSmith/reaper - Social media scraping / data collection tool for the Facebook, Twitter, Reddit, YouTube, Pinterest, and Tumblr APIs
opsdisk/pagodo - pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching
soimort/you-get - ⏬ Dumb downloader that scrapes the web
Cartmanishere/zippyshare-scraper - A module to get direct downloadable links from zippyshare download page.
codelucas/newspaper - News, full-text, and article metadata extraction in Python 3. Advanced docs:
maurosoria/dirsearch - Web path scanner
10se1ucgo/DisableWinTracking - Uses some known methods that attempt to minimize tracking in Windows 10
Smaash/snitch - information gathering via dorks
AeonDave/doork - Passive Vulnerability Auditor
josephpd3/ClinicalTrialsDownloader - Download Clinical Trials from clinicaltrials.gov and save as .pkl files.
realpython/python-scripts - because i'm tired of gists
bandrews568/Download-wget - Python script to download mp3 files
sananth12/ImageScraper - ✂️ High performance, multi-threaded image scraper
opencivicdata/scrapers-us-municipal - Scrapers for US municipal governments.
stanfordjournalism/search-script-scrape - 101 real world web scraping exercises in Python 3 for data journalists
jjjake/internetarchive - A Python and Command-Line Interface to Archive.org

Raku

OWASP/joomscan - OWASP Joomla Vulnerability Scanner Project

Ruby

pedrib/PoC - Advisories, proof of concept files and exploits that have been made public by @pedrib.
listia/aws_agcod - Ruby API Library for Amazon Gift Card on Demand (AGCOD)
bonusly/tangolicious - Tangocard RaaS API v2 wrapper
dreadlocked/Drupalgeddon2 - Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)
spree/spree_gateway - Huge collection of payment gateways for @spree. Stripe, Braintree, Apple Pay, Authorize.net and many others!
wpscanteam/wpscan - WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
bahaabdelwahed/killshot - A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner
digininja/CloudStorageFinder - A collection of tools to find data that has been made public in cloud storage systems such as S3 Buckets and Digital Ocean Spaces
rastating/wordpress-exploit-framework - A Ruby framework designed to aid in the penetration testing of WordPress systems.
hahwul/WebHackersWeapons - ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
hahwul/XSpear - Powerfull XSS Scanning and Parameter analysis tool&gem
hartator/wayback-machine-downloader - Download an entire website from the Wayback Machine.
dmayer/idb - idb is a tool to simplify some common tasks for iOS pentesting and research
rapid7/metasploit-framework - Metasploit Framework
pry0cc/CredCatch - Find plaintext credentials from emails in bulk from password dumps, and generate emails on the fly.
Netflix-Skunkworks/Scumblr - Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
tresacton/dspectrumgui - The goal of this app is to make it trivial to demodulate most basic RF transmission, and provide a digital worksheet for your reverse engineering efforts.
urbanadventurer/WhatWeb - Next generation web scanner

Rust

BurntSushi/ripgrep - ripgrep recursively searches directories for a regex pattern while respecting your gitignore
denisidoro/navi - An interactive cheatsheet tool for the command-line
seanpianka/aws-incentives-api-rs - A Rust service for using the Amazon Gift Card API
MCOfficer/odcrawler-discovery - The (new) discovery backend for https://odcrawler.xyz
Findomain/Findomain - The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, mul
Skallwar/suckit - Suck the InTernet
leo-lb/wpbrute-rs - High performance WordPress login bruteforcer with automatic concurrency for maximum amount of tries per second.
alacritty/alacritty - A cross-platform, OpenGL terminal emulator.
kpcyrd/sn0int - Semi-automatic OSINT framework and package manager
PoC-Consortium/scavenger - A fast Burstcoin miner written in Rust

Scala

TheHive-Project/TheHive - TheHive: a Scalable, Open Source and Free Security Incident Response Platform

Shell

m3n0sd0n4ld/GooFuzz - GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advanced
projectzeroindia/CVE-2019-11510 - Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)
internetwache/GitTools - A repository with 3 tools for pwn'ing websites with .git repositories available
ckam/proxy_checker - simple proxy checker on bash
thevillagehacker/Bug-Hunting-Arsenal - The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down here 👇👇
indiancybertroops/DorKey - Dorkey is Dork generator For Sql Injection It includes Php Aspx And other extension Its Simple Fast And Lightweight Sqli Dork Generator
quickemu-project/quickemu - Quickly create and run optimised Windows, macOS and Linux desktop virtual machines.
machevalia/pwndb.sh - Script to utilize the v2 pwndb onion site to find leaked passwords.
martintjj/BreachCompilation - BreachCompilation Tools
v4d1/SpoofThatMail - Bash script to check if a domain or list of domains can be spoofed based in DMARC records
bhdresh/CVE-2021-33766 - ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit
BonJarber/SecUtils - Random utilities from my security projects that might be useful to others
six2dez/OneListForAll - Rockyou for web fuzzing
ByDog3r/90s-Checker-Account - 𝟗𝟎'𝐬 𝐂𝐡𝐞𝐜𝐤; verify emails/users and passwords in some pages.
grahamhelton/dehashQuery - A script used to query the dehashed API and filter for more useful results
ShivamRai2003/Reconky-Automated_Bash_Script - Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
clu3bot/owt - Update Version 3.1 added free SMS messaging.
dwisiswant0/findom-xss - A fast DOM based XSS vulnerability scanner with simplicity.
felipecaon/url2ip - Bash script that converts a list of subdomains to ips using dig.
NSAKEY/nsa-rules - Password cracking rules and masks for hashcat that I generated from cracked passwords.
bongochong/CombinedPrivacyBlockLists - Ad-blocking hosts files, IP block lists, PAC filters, and ABP / uBO subscriptions, all merged from multiple reputable sources, combined with my own research. Also, script-based utilities to help you c
pwn0sec/PwnChecker - Multi tool checker account validator 2020
mazen160/Firefox-Security-Toolkit - A tool that transforms Firefox browsers into a penetration testing suite
l4yton/RegHex - A collection of regexes for every possbile use
pry0cc/axiom - The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
GnosticPlayers/Solr-GRAB - Steal Apache Solr instance Queries with or without a username and password.
speed47/spectre-meltdown-checker - Spectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
x1mdev/ReconPi - ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.
six2dez/reconftw - reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
ItsMeLBoy/AWCREC - Amazon Credentials Checker
GONZOsint/WhatCMS - CMS Detection and Exploit Kit based on Whatcms.org API
greycatz/CloudUnflare - Reconnaissance Real IP address for Cloudflare Bypass
mansoorr123/wp-file-manager-CVE-2020-25213 - https://medium.com/@mansoorr/exploiting-cve-2020-25213-wp-file-manager-wordpress-plugin-6-9-3f79241f0cd8
aahmad097/BlackBird - Subdomain Enumeration and Scanner
Cyb0r9/Config-Exploiter - Config-Exploiter Dump config.php file from joomla and wordpress websites
TheSpeedX/SDorker - SuperDorker gives you a huge list of websites for 0day attacks from Google Dorks
himanshub16/ProxyMan - Configuring proxy settings made easy.
RightToPrivacy/MACcleaner - New continually changing MAC spoofer concept to thwart trackers; randomizes mac address at random times) prevents WIFI access point location tracking/MAC change patterns, permanent mac setting include
mmtrt/notepad-plus-plus - Unofficial snap repo for notepad-plus-plus snap
Winetricks/winetricks - Winetricks is an easy way to work around problems in Wine
peterpt/eternal_scanner - An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)
DenizParlak/Zeus - AWS Auditing & Hardening Tool
DenizParlak/hayat - Hayat is a script for report and analyze Google Cloud Platform resources.
projectzeroindia/CVE-2019-19781 - Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
tomdev/teh_s3_bucketeers -
abdulr7mann/hackerEnv -
dazdaz/gcs - Program shows how easy it is to use the Google Custom Search Engine from the command line
prowler-cloud/prowler - Prowler is an Open Source security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 2
danielebailo/couchdb-dump - Bash command line scripts to dump &restore a couchdb database
apache/couchdb-pkg - Apache CouchDB Packaging support files
SilverPoision/Rock-ON - Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.
HightechSec/git-scanner - A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public
NullArray/NetSet - Operational Security utility and automator.
Shiva108/WAES - CPH:SEC WAES: Web Auto Enum & Scanner - Auto enums website(s) and dumps files as result
IvanGlinkin/Fast-Google-Dorks-Scan - The OSINT project, the main idea of which is to collect all the possible Google dorks search combinations and to find the information about the specific web-site: common admin panels, the widespread f
jakewmeyer/Geo - 🌎 A Bash utility for easy wan, lan, router, dns, mac address, and geolocation output, with clean stdout for piping
HiroshiManRise/anonym8 - Sets Transparent proxy tunnel through Tor, I2P, Privoxy, Polipo and modify DNS; Include Anonymizing Relay Monitor (arm), macchanger and wipe (Cleans ram/cache & swap-space) features, ID spoofing has n
proxycannon/proxycannon-ng - A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference
flexingonlamers/Mirai-Auto-Setup - MiraiBotnet Auto setup Script, Easy to use shell menu i created for a select amount of people, decided to release it
jgamblin/MacOS-Maid - Shell Script I Use To Automatically Clean Up My Mac.
mgeeky/dirbuster - wfuzz, SecLists and john -based dirbusting / forceful browsing script intended to be used during web pentest assingments
21y4d/nmapAutomator - A script that you can run in the background!
isacikgoz/gogh-to-tilix - Generates popular themes from https://github.com/Mayccoll/Gogh for the https://github.com/gnunn1/tilix terminal emulator.
kennyn510/wpa2-wordlists - A collection of wordlists dictionaries for password cracking
mrzool/nordvpn-server-find - Find the fastest NordVPN servers from the command line, filtering by location and current server load
zerobyte-id/SEcraper - Search engine scraper tool with BASH script.
m3n0sd0n4ld/uDork - uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications,
aryanrtm/KawaiiDeauther - Jam all wifi clients/routers.
mbadolato/iTerm2-Color-Schemes - Over 250 terminal color schemes/themes for iTerm/iTerm2. Includes ports to Terminal, Konsole, PuTTY, Xresources, XRDB, Remmina, Termite, XFCE, Tilda, FreeBSD VT, Terminator, Kitty, MobaXterm, LXTermin
Hackplayers/4nonimizer - A bash script for anonymizing the public IP used to browsing Internet, managing the connection to TOR network and to different VPNs providers (OpenVPN)
esc0rtd3w/wifi-hacker - Shell Script For Attacking Wireless Connections Using Built-In Kali Tools. Supports All Securities (WEP, WPS, WPA, WPA2)
meoso/wigle2kml - WiGLE.net to KML converter in BASH
BlackArch/torctl - Script to redirect all traffic through tor network including dns queries for anonymizing entire system
1N3/BruteX - Automatically brute force all services running on a target.
1N3/Findsploit - Find exploits in local and online databases instantly
1N3/Goohak - Automatically Launch Google Hacking Queries Against A Target Domain
1N3/Sn1per - Attack Surface Management Platform | Sn1perSecurity LLC
arismelachroinos/lscript - The LAZY script will make your life easier, and of course faster.
toniblyx/my-arsenal-of-aws-security-tools - List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
zardus/ctf-tools - Some setup scripts for security research tools.
Cignoraptor-ita/cignotrack - OSINT tool for testing privacy and social engineering vulnerability of organizations.
Viralmaniar/I-See-You - ISeeYou is a Bash and Javascript tool to find the exact location of the users during social engineering or phishing engagements. Using exact location coordinates an attacker can perform preliminary re
Mi-Al/WiFi-autopwner - WiFi-autopwner: script to automate searching and auditing Wi-Fi networks with weak security
staz0t/hashcatch - Capture handshakes of nearby WiFi networks automatically
nahamsec/lazyrecon - This script is intended to automate your reconnaissance process in an organized fashion
Cyb0r9/SocialBox - SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi
tehw0lf/airbash - A POSIX-compliant, fully automated WPA PSK PMKID and handshake capture script aimed at penetration testing
mikhbur/conformer - Password Guessing for different Web Portals
v1s1t0r1sh3r3/airgeddon - This is a multi-use bash script for Linux systems to audit wireless networks.
OneLogicalMyth/hashcat-scripts - A collection of scripts I use with hashcat
streaak/pastebin-scraper - Pastebin-scraper tool leverages the API of https://psbdmp.ws/ to find emails/domains dumped in pastebin.
hamvocke/dotfiles - A collection of my personal dotfiles
KALILINUXTRICKSYT/easysploit - EasySploit - Metasploit automation (EASIER and FASTER than EVER)
screetsec/Sudomy - Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
screetsec/Dracnmap - Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and dif
trimstray/sandmap - Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.
bcapptain/dockernymous - A script used to create a whonix like gateway/workstation environment with docker containers.
KeepWannabe/Remot3d - Remot3d: is a simple tool created for large pentesters as well as just for the pleasure of defacers to control server by backdoors
wuseman/EMAGNET - Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, inst
Und3rf10w/kali-anonsurf - A port of ParrotSec's stealth and anonsurf modules to Kali Linux
angristan/wireguard-install - WireGuard VPN installer for Linux servers
brainfucksec/kalitorify - Transparent proxy through Tor for Kali Linux OS
screetsec/Vegile - This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will

Smarty

chvancooten/follina.py - POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes

TypeScript

prescience-data/puppeteer-botcheck - 🕵‍♂ Bot detection tests for Puppeteer. Hide and seek!
thomasdondorf/puppeteer-cluster - Puppeteer Pool, run a cluster of instances in parallel
aarmora/avoid-being-blocked-with-puppeteer - Puppeteer stealth is a great tool to help you avoid being blocked while web scraping with puppeteer. Easy to use and is very powerful.
fast-facts/puppeteer-pro - A simple puppeteer wrapper to enable useful plugins with ease
ulixee/secret-agent - The web scraper that's nearly impossible to block - now called @ulixee/hero
LasCC/Hack-Tools - The all-in-one Red Team extension for Web Pentester 🛠
everettsouthwick/amazon-auto-reload - Node script to iterate through a list of credit/debit cards and buy an Amazon.com gift cards of a specified amount.
google/tamperchrome - Tamper Dev is an extension that allows you to intercept and edit HTTP/HTTPS requests and responses as they happen without the need of a proxy. Works across all operating systems (including Chrome OS).
tictactrip/luminator - 🕸 Axios proxy provider agent.
aarmora/jordan-uses-luminati - Jordan shows examples of how to use Luminati, a very powerful proxy that works with http requests and Puppeteer.
JorgenVatle/Luminati-Proxy-Extractor - Extract gIPs from your Luminati Proxy Manager entirely from the command line.
Sourciluss667/dorks-gen-ts - Dorks Generator with keywords, page type and page format made with TypeScript
diego3g/rocketredis - A beautiful Redis GUI 🔥 (under development)
arunbandari/mongo-gui - A web-based MongoDB graphical user interface
juice-shop/juice-shop - OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
apify/crawlee - Crawlee—A web scraping and browser automation library for Node.js that helps you build reliable crawlers. Fast.
ninoseki/mitaka - A browser extension for OSINT search
WorldBrain/Memex - Browser extension to curate, annotate, and discuss the most valuable content and ideas on the web. As individuals, teams and communities.

Vala

teejee2008/timeshift - System restore tool for Linux. Creates filesystem snapshots using rsync+hardlinks, or BTRFS snapshots. Supports scheduled snapshots, multiple backup levels, and exclude filters. Snapshots can be resto

Visual Basic

NYAN-x-CAT/Lime-Miner - a simple hidden silent XMR miner.
TheMadHatt3r/DazContentInstaller - Daz Freeware Zip Installer

Visual Basic .NET

Are-s-h/GovCracker - GovCracker is the best Wrapper and GUI for Hashcat, John the Ripper, PRINCE, Maskprocessor, Wordlister, CUPP, etc.
X-SLAYER/Website-Cloner - It allows you to download a website from the Internet to a local directory, building recursively all directories, getting HTML, images, and other files from the server to your computer.
UnamSanctam/SilentXMRMiner - A Silent (Hidden) Monero (XMR) Miner Builder

Vue

Chaphasilor/odcrawler-frontend - A frontend for ODCrawler, an Open Directory search engine.
martijnmichel/nordvpn-linux - A nicer way to connect to NordVPN on Linux.

YARA

InQuest/yara-rules-vt - Collection of YARA rules designed for usage through VirusTotal.com.
ail-project/ail-yara-rules - A set of YARA rules for the AIL framework to detect leak or information disclosure

License

To the extent possible under law, Astrogeorgeonethree has waived all copyright and related or neighboring rights to this work.

Name		Name	Last commit message	Last commit date
Latest commit History 209 Commits
.github/workflows		.github/workflows
LICENSE		LICENSE
README.md		README.md
topics.md		topics.md

License

Astrogeorgeonethree/Starred2

Folders and files

Latest commit

History

Repository files navigation

Awesome Stars

Contents

AutoIt

Batchfile

BitBake

BlitzBasic

C

C#

C++

CSS

CoffeeScript

Dart

Dockerfile

Erlang

Go

HTML

Hack

Java

JavaScript

Jupyter Notebook

Kotlin

Lua

Makefile

Nim

Objective-C

Others

PHP

Pascal

Perl

PowerShell

Python

Raku

Ruby

Rust

Scala

Shell

Smarty

TypeScript

Vala

Visual Basic

Visual Basic .NET

Vue

YARA

License

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Packages