The Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes the technical processes for verifying the contr…

Python 11,839 2,354 Updated Dec 24, 2024

ozkl / soso

A Simple Unix-like operating system

C 910 47 Updated Feb 17, 2023

stefanprodan / dockprom

Docker hosts and containers monitoring with Prometheus, Grafana, cAdvisor, NodeExporter and AlertManager

6,075 1,730 Updated Oct 31, 2024

byt3bl33d3r / SILENTTRINITY

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

Boo 2,206 407 Updated Dec 6, 2023

RoganDawes / LOGITacker

Enumerate and test Logitech wireless input devices for vulnerabilities with a nRF52840 radio dongle.

C 665 118 Updated Jan 2, 2024

1N3 / IntruderPayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

BlitzBasic 3,700 1,189 Updated Sep 27, 2021

swisskyrepo / PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Python 62,129 14,816 Updated Dec 4, 2024

BuffaloWill / oxml_xxe

A tool for embedding XXE/XML exploits into different filetypes

Ruby 1,051 230 Updated Dec 16, 2024

OWASP / wpBullet

Python 62 7 Updated Jan 30, 2022

globocom / secDevLabs

A laboratory for learning secure web and mobile development in a practical manner.

PHP 910 446 Updated Sep 25, 2024

trimstray / the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

152,193 9,681 Updated Nov 19, 2024

aquasecurity / trivy

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Go 24,121 2,379 Updated Dec 25, 2024

fail2ban / fail2ban

Daemon to ban hosts that cause multiple authentication errors

Python 12,669 1,264 Updated Dec 21, 2024

adon90 / pentest_compilation

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

XSLT 1,328 408 Updated Dec 22, 2022

brompwnie / botb

A container analysis and exploitation tool for pentesters and engineers.

Go 654 59 Updated Sep 27, 2023

juice-shop / juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

TypeScript 10,618 11,372 Updated Dec 10, 2024

zardus / ctf-tools

Some setup scripts for security research tools.

Shell 8,603 1,900 Updated Nov 21, 2023

pgaijin66 / XSS-Payloads

This repository holds all the list of advanced XSS payloads that can be used in penetration testing. These payloads can be loaded into XSS scanners as well.

1,042 797 Updated Jul 16, 2024

mandiant / commando-vm

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

PowerShell 7,018 1,301 Updated Sep 24, 2024

bettercap / bettercap

The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

JavaScript 16,947 1,484 Updated Nov 23, 2024

d0nkeys / redteam

Red Team Scripts by d0nkeys (ex SnadoTeam)

PowerShell 687 134 Updated Jul 27, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

rfc rfchacks

Block or report rfchacks

Stars

VirusTotal / yara

ZephrFish / DockerAttack

ticarpi / jwt_tool

GTFOBins / GTFOBins.github.io

pimoroni / hyperpixel4

ntamvl / rails_5_api_tutorial

ProfessionallyEvil / harpoon

ProfessionallyEvil / C4

SpecterOps / BloodHound-Legacy

OWASP / owasp-mastg