This repository started out as a learning in public project for myself and has now become a structured learning map for many in the community. We have 3 years under our belt covering all things Dev…

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Attack Surface Management Platform

Scripted Local Linux Enumeration & Privilege Escalation Checks

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Git All the Payloads! A collection of web attack payloads.

Linux enumeration tool for pentesting and CTFs with verbosity levels

Rockyou for web fuzzing

venom - C2 shellcode generator/compiler/handler

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and …

Script for searching the extracted firmware file system for goodies!

Red Team Tool Kit

Quickly analyze and reverse engineer Android packages

Capture handshakes of nearby WiFi networks automatically

A tool that transforms Firefox browsers into a penetration testing suite

LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and easy to add checks for new services.

Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana

WPS hacking scripts

Linux bash script automation for metasploit

A Bind9 server for pentesters to use for Out-of-Band vulnerabilities

BlueKeep scanner supporting NLA

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Search for information related to domain: Emails - IP addresses - Sub-Domains - Information on WEB technology - Type of Firewall - NS and MX records.

Programmed For Penetration Testing Beginners . This Program Based on Mdk3 . "WiFi Stress Testing Beacon Flooding & Deauthentication Attack "

A CLI-based tool that helps you generate NGINX server block configuration files in a few seconds.

Offensives network security framework for Wireless and MiTM style hacking

assets for www.hahwul.com