infosecsecurity Goto Github PK

hardening

Repository of Hardening Guides

hatcloud

Bypass CloudFlare with Ruby

hostilesubbruteforcer

hostrecon

This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users, and domain information. It does not use any 'net', 'ipconfig', 'whoami', 'netstat', or other system commands to help avoid detection.

hsecscan

A security scanner for HTTP response headers.

htcap

htcap is a web application scanner able to crawl single page application (SPA) in a recursive manner by intercepting ajax calls and DOM changes.

httpscreenshot

impacket

Impacket is a collection of Python classes for working with network protocols.

inforfinder

Inforfinder is a tool to collect information of any domains pointing at some server (ip, domain, range, file). Is able to detect all domains pointing to an IP address and detect CMS version installed in a web (Wordpress, Joomla, prestashop, etc), also is able to detect PHP version, Web Server version, Plesk version...

instarecon

Automated digital reconnaissance

intrigue-core

Intelligence gathering framework

joomlavs

A black box, Ruby powered, Joomla vulnerability scanner

jsparser

jsql-injection

jSQL Injection is a Java application for automatic SQL database injection.

kali-linux

A complete documentation for transforming yourself from script-kiddie to professional hacker.

kalirouter

intercepting kali router

katanaframework

The New Hacking Framework

katoolin

Automatically install all Kali linux tools

killchain

A unified console to perform the "kill chain" stages of attacks.

knock

Knock Subdomain Scan

lazykali

hackpack to go with lazykali on menu application Kali Linux

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

lazys3

leviathan

wide range mass audit toolkit

lfisuite

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

liffy

Local File Inclusion Exploitation Tool (mirror)

magma

The magma server daemon, is an encrypted email system with support for SMTP, POP, IMAP, HTTP and MOLTEN,. Additional support for DMTP and DMAP is currently in active development.

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

mimipenguin

A tool to dump the login password from the current linux user

morpheus

Morpheus - Automated Ettercap TCP/IP Hijacking Tool