CodeAnalysis – Static Code Analysis
Tencent Cloud Experience Apply Link Key Features Language support: It supports Java/C++/Objective-C/C#/JavaScript/Python/Go/PHP and more, covering common programming languages. Code inspection:...
Tools
GoodHound – Uses Sharphound, Bloodhound And Neo4j To Produce An Actionable List Of Attack Paths For Targeted Remediation
Attackers think in graphs, defenders think in actions, Documentation All documentation can be found in the wiki Acknowledgments The py2neo...
Dome – Fast And Reliable Python Script That Makes Active And/Or Passive Scan To Obtain Subdomains And Search For Open Ports
Passive mode: Active mode + port scan: OSINT Search Engines Dome uses these web pages to obtain subdomains Without API:...
DomainAlerting – Daily Alert When A New Domain Name Is Registered And Contains Your Keywords
Daily alert when a new domain name is registered and contains your keywords. Send automatic Prerequisite apt install mailutilspip3 install...
Codecat v0.56 – An Open-Source Tool To Help You Find/Track User Input Sinks And Security Bugs Using Static Code Analysis
CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These...
Nivistealer – Steal Victim Images Exact Location Device Info And Much More
Steal Victim Images Exact Location Device Info And Much More Features of Nivi-Stealer: Steal Ip Steal Device Info Uses Device...
WSVuls – Website Vulnerability Scanner Detect Issues (Outdated Server Software And Insecure HTTP Headers)
WSVuls Website Download Wsvuls If you like the site, please consider joining the telegram channel or supporting us on Patreon...
ASSAMEE – Free Advance Encryptor For Anon Cloud
ASSAMEE is a free Advance encryptor for Anonfiles. It uses an advanced encryption method to encrypt the directory with AES-256....
Scanmycode-Ce – Code Scanning/SAST/Static Analysis/Linting Using Many tools/Scanners With One Report – Scanmycode Community Edition (CE)
It is a Code Scanning/SAST/Static Analysis/Linting solution using many tools/Scanners with One Report. You can also add any tool to...
Master_Librarian – A Simple Tool To Audit Unix/*BSD/Linux System Libraries To Find Public Security Vulnerabilities
A simple tool to audit Unix/*BSD/Linux system libraries to find public security vulnerabilities. To install requirements: $ sudo python3 -m...
Geowifi – Search WiFi Geolocation Data By BSSID And SSID On Different Public Databases
Search WiFi Json output example { "data":{ "bssid":"A0:XX:XX:XX:6F:90", "vendor":"TP-LINK TECHNOLOGIES CO.,LTD.", "mac_type":"MA-L", "wigle":{ "lat":00.000908922099, "lon":00.000945220028 }, "apple":{ "lat":"not_found", "lon":"not_found"...
GONET-Scanner – Golang Network Scanner With Arp Discovery And Own Parser
ScreenShots Install chmod +x install.sh./install.sh Usage ARP Discovery -ar CIDR -s: Scan ports in all hosts discovered -ap: Scan to...
GraphQL Cop – Security Auditor Utility For GraphQL APIs
GraphQL Cop is a small Python utility to run common security tests against GraphQL APIs. Requirements Python3 Requests Library Detections...
Fastfuz-Chrome-Ext – Site Fast Fuzzing With Chorme Extension
Fast Install Add Your Custom Files Open files.txt Paste your file or directory name in line by line Happy Hunting...
PwnKit-Exploit – Proof Of Concept (PoC) CVE-2021-4034
Proof Of Concept (PoC) CVE-2021-4034 @c0br40x help to make this section in README!! debian@debian:~/PwnKit-Exploit$ makecc -Wall exploit.c -o exploitdebian@debian:~/PwnKit-Exploit$ whoamidebiandebian@debian:~/PwnKit-Exploit$...
Osmedeus – A Workflow Engine For Offensive Security
A Workflow Engine For Offensive Security Installation NOTE that you need some essential tools like curl, wget, git, zip and...
PyShell – Multiplatform Python WebShell
PyShell is Multiplatform Python WebShell. This tool helps you to obtain a shell-like interface on a web server to be...
Authz0 – An Automated Authorization Test Tool. Unauthorized Access Can Be Identified Based On URLs And RolesAnd Credentials
Key Features Generate scan template $ authz0 new Include URLs Include Roles Include ZAP history (Select URLS > Save...
IOC Scraper – A Fast And Reliable Service That Enables You To Extract IOCs And Intelligence From Different Data Sources
IOC Scraper utilises IOCPARSER service to fetch IOCs from different vendor Blogs, PDFs, and CSV files. Parsing IOCs is time-consuming...
HaccTheHub – Open Source Self-Hosted Cyber Security Learning Platform
Open source self-hosted HaccTheHub is an open source project that provides cyber security The HaccTheHub system consists of 3 main...
Ocr-Recon – Tool To Find A Particular String In A List Of URLs Using Tesseract’S OCR (Optical Character Recognition) Capabilities
This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition)...
Chaya – Advance Image Steganography
Chaya protects your privacy through steganography, Supports AES-256-GCM cryptography Supports Standard LSB steganography Supports LSB-LPS steganography Supports FLIF lossless compression...
Litefuzz – A Multi-Platform Fuzzer For Poking At Userland Binaries And Servers
Litefuzz is meant to serve a purpose: fuzz and triage on all the major platforms, support both CLI/GUI apps, network...
Searpy – Search Engine Tookit
1. Install git clone https://github.com/j3ers3/Searpypip install -r requirement.txt配置API及账号 ./config.pypython Searpy -h 2. Help baidu Engine --google Using google Engine --so...
