[
Sonic Is Web Headers Scanner
$ git clone https://github.com/emrekybs/Sonic.git
$ cd Sonic
$ chmod +x Sonic
$ ./sonic --help
$ ./sonic -f website.txt
$ ./sonic --url=https://www.yahoo.com
tinyman_exploit_finder There was a big tinyman exploit. You can read about it he
hexxus Hexxus is a fast hash cracking tool which checks more than 30 thousand passwords in under 4 seconds and can crack the following types bcrypt sh
Log4jScanner Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains. Disc
Introduction expbox is an exploit code collection repository List CVE-2021-41349 Exchange XSS PoC = Exchange 2013 update 23 = Exchange 2016 update 2
Infoga - Email OSINT Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source (search engines, pg
Just-Your-Basic-Port-Scanner Just your basic port scanner - with multiprocessing capabilities & further nmap enumeration. Use at your own discretion,
SPV SecurePasswordVerification Its is python module for doing a secure password verification without sharing the password directly. Features The passw
Multi-view graph embedding clustering network: Joint self-supervision and block diagonal representation Simple implementation of our paper MVGC. The d
0x00 介绍 tig Threat Intelligence Gathering 威胁情报收集,旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率,目前已集成微步、IP 域名反查、Fofa 信息收集、ICP 备案查询、IP 存活检测五个模块,现已支持以下信息的查询: ✅ 微步标签 ✅ I
CVE-2021-26084 - Confluence Pre-Auth RCE OGNL injection Usage usage: cve-2021-26084_confluence_rce.py [-h] --url URL [--cmd CMD] [--shell] CVE-2021-2
Valeria_stealer- Requirements : python 3.9.2 and higher (4Feb 2022) program dete
Gatekeeper Lite Backdoor Fully functioning bind-type backdoor This backdoor is a fully functioning bind shell and lite version of my full functioning
介绍 工具介绍 这是一款致力于将各类优秀脚本集合在一起调用、联动,最终可形成超级渗透脚本的工具。目的是扫描到更全的资产信息,发现更多的漏洞利用。但是这是通过牺牲扫描速度来提升扫描广度的。所以不太适合要进行紧急信息收集和漏洞利用的情况。
Log4j2 Vulnerability Local Scanner (CVE-2021-45046) Log4j 漏洞本地检测脚本,扫描主机上所有java进程,检测是否引入了有漏洞的log4j-core jar包,是否可能遭到远程代码执行攻击(CVE-2021-45046)。上传扫描报告到指定的服
Tenssens framework focused on gathering information from free tools or resources. The intention is to help people find free OSINT resources.
A tool combined with the advantages of masscan and nmap
A tool that detects the "expensive" Carbon Black watchlists.
WinRemoteEnum WinRemoteEnum is a module-based collection of operations achievable by a low-privileged domain user, sharing the goal of remotely gather
Log4jTools Tools for investigating Log4j CVE-2021-44228 FetchPayload.py (Get java payload from ldap path provided in JNDI lookup). Example command: Re
brute_smb_share I wrote this small PoC after bumping into SMB servers where Hydr
9 Dec 27, 2022
17 Apr 05, 2022
35 Dec 12, 2022
263 Feb 14, 2022
1.8k Jan 04, 2023
0 Nov 06, 2021
1 Feb 12, 2022
13 Oct 26, 2022
698 Dec 09, 2022
92 Jul 20, 2022
3 May 05, 2022
56 Mar 25, 2022
23 Jul 05, 2022
86 Dec 09, 2022
31 Oct 21, 2022
59 Dec 24, 2022
8 Aug 04, 2022
9 Nov 09, 2022
91 Dec 29, 2022
3 Feb 21, 2022