Offensive Security

tryharder

0.0

A C++ staged shellcode loader with evasion capabilities, compatible with Sliver and other shellcode sources, designed for offensive security testing.

GitHub Actions Attack Diagram

0.0

A visual guide illustrating attack paths and techniques for exploiting vulnerabilities in GitHub Actions configurations.

Bento Toolkit

0.0

A lightweight and portable Docker container for penetration testers and CTF players

Metasploit

0.0

A penetration testing framework for identifying and exploiting vulnerabilities.

FDsploit

0.0

A Python-based tool for identifying and exploiting file inclusion and directory traversal vulnerabilities in web applications.

JSShell

0.0

An interactive multi-user web JS shell

GraphQLmap

0.0

A scripting engine for interacting with GraphQL endpoints for pentesting purposes.

IntruderPayloads

0.0

A collection of payloads and methodologies for web pentesting.

Recursebuster

0.0

A tool for recursively querying webservers

XSpear

0.0

A powerful XSS scanning and parameter analysis tool

Gospider

0.0

Fast web spider written in Go

Burp-LFI-tests

0.0

A collection of tests for Local File Inclusion (LFI) vulnerabilities using Burp Suite.

thc-hydra

0.0

A login cracker that can be used to crack many types of authentication protocols.

httprebind

0.0

Automatic tool for DNS rebinding-based SSRF attacks

cariddi

0.0

A tool for security researchers and penetration testers to automate the process of finding sensitive information on a target domain.

XSSOauthPersistence

0.0

Maintaining account persistence via XSS and Oauth

LFISuite

0.0

A tool for Local File Inclusion (LFI) exploitation and scanning

tko-subs

0.0

A tool for detecting and taking over subdomains with dead DNS records

DNS Rebind Toolkit

0.0

A front-end JavaScript toolkit for creating DNS rebinding attacks

SSRFmap

0.0

Automatic SSRF fuzzer and exploitation tool

vaf

0.0

A cross-platform web fuzzer written in Nim