Automated All-in-One OS Command Injection Exploitation Tool.

w3af: web application attack and audit framework, the open source web vulnerability scanner.

IPProxyPool代理池项目，提供代理ip

The Leading Security Assessment Framework for Android.

A fast sub domain brute tool for pentesters

新浪微博爬虫（Scrapy、Redis）

Weaponized web shell

DEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3

Veil Evasion is no longer supported, use Veil 3.0!

XSS spider - 66/66 wavsep XSS detected

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

to discover subdomains of your target domain

动态多线程敏感信息泄露检测工具

A Domain Name & Email Address Collection Tool

OWASP WEB Directory Scanner

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.

多线程WEB目录爆破工具 [Multi-thread WEB directory blasting tool(with dics inside) ]

Android Emulator for mobile security testing

Book about DTrace and SystemTap

多线程网站目录穷举扫描

protocol fuzzing toolkit