Automated Phishing Tool

Advanced information gathering & OSINT tool for phone numbers

SpiderFoot, the most complete OSINT collection and reconnaissance tool.

Pilot program for CVE submission through GitHub

A cross-platform, customizable science fiction terminal emulator with advanced monitoring & touchscreen support.

Powerfull XSS Scanning and Parameter Analysis tool&gem

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

CSRF Scanner

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or…

A powerful tool for managing networks and troubleshoot network problems!

WPScan is a free, for non-commercial use, black box WordPress Vulnerability Scanner written for security professionals and blog maintainers to test the security of their WordPress websites.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

🔥 Everything awesome about web-application firewalls (WAF).

Blockchain Transactions Investigation Tool

This script will auto setup vncserver in Kali Linux Raspberry Pi 3 and Raspberry Pi Zero W for VNC session

PiFiTorAP is simple bash script for configure your Raspberry Pi 3 B/B+ as an Anonymous WiFi Hotspot.

Build interactive map of cameras from Shodan

Quark is a data visualization framework.

Keep same and cross domain iFrames sized to their content with support for window/content resizing, in page links, nesting and multiple iFrames

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

mosquito - Automating reconnaissance and brute force attacks

LeetCode Problems' Solutions

Red_teaming/Pentesting notes and experiments for a real world engagements

A DNS rebinding attack framework.

An internet scanner for exploit CVE-2017-0144 (Eternal Blue) & CVE-2017-0145 (Eternal Romance)

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

Unified repository for different Metasploit Framework payloads