Hunt down social media accounts by username across social networks
Automatic SQL injection and database takeover tool
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
🤖 The Modern Port Scanner 🤖
🕵️♂️ Collect a dossier on a person by username from thousands of sites
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
A collection of hacking tools, resources and references to practice ethical hacking.
Web path scanner
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Directory/File, DNS and VHost busting tool written in Go
The OWASP Mobile Application Security Testing Guide (MASTG) is a comprehensive manual for mobile app security testing and reverse engineering. It describes technical processes for verifying the OWASP Mobile Security Weakness Enumeration (MASWE) weaknesses, which are in alignment with the OWASP MASVS.
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.
Attack Surface Management Platform
A swiss army knife for pentesting networks
Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C
Test your prompts, agents, and RAGs. AI Red teaming, pentesting, and vulnerability scanning for LLMs. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with command line and CI/CD integration.
Add a description, image, and links to the pentesting topic page so that developers can more easily learn about it.
To associate your repository with the pentesting topic, visit your repo's landing page and select "manage topics."