Clik here to view.
RouterCheck - Android app for ensure the safety of your Router
RouterCheck is a system for ensuring the well-being of your router and home network. It’s offered as a smartphone app, but is far more than just a simple smartphone app. RouterCheck communicates with a...
View ArticleClik here to view.
WS-Attacker - Modular Framework for Web Services Penetration Testing
XML-based SOAP Web Services are a widely used technology, which allows the users to execute remote operations and transport arbitrary data. It is currently adapted in Service Oriented Architectures,...
View ArticleClik here to view.
INURLBR - Advanced Search in Multiple Search Engines
Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.INURLBR scanner...
View ArticleClik here to view.
YASUO - Scans for Vulnerable & Exploitable 3rd-party Web Applications
Yasuo is a ruby script that scans for vulnerable 3rd-party web applications.While working on a network security assessment (internal, external, redteam gigs etc.), we often come across vulnerable...
View ArticleClik here to view.
Plecost - Wordpress Vulnerabilities Finder
Plecost is a vulnerability fingerprinting and vulnerability finder for Wordpress blog engine. Why?There are a huge number of Wordpress around the world. Most of them are exposed to be attacked and be...
View ArticleClik here to view.
AsHttp - Shell Command to Expose any other Command as HTTP
ashttp provide a simple way to expose any shell command by HTTP. For example, to expose top by HTTP, try : ashttp -p8080 top ; then try http://localhost:8080.Dependenciesashttp depends on hl_vt100, a...
View ArticleClik here to view.
PyPhisher - A Simple Python Tool for Phishing
If you are looking to make a phishing testing or demonstration you can check PyPhisher. This tool was created for the purpose of phishing during a penetration test. This tool is python based that...
View ArticleClik here to view.
Wireless Network Watcher v1.81 - Show Who is Connected to your Wireless Network
Wireless Network Watcher is a small utility that scans your wireless network and displays the list of all computers and devices that are currently connected to your network.For every computer or device...
View ArticleClik here to view.
Pixiewps - Bruteforce Offline the WPS Pin (Pixie Dust Attack)
Pixiewps is a tool written in C used to bruteforce offline the WPS pin exploiting the low or non-existing entropy of some APs (pixie dust attack). It is meant for educational purposes only. All credits...
View ArticleClik here to view.
NoPo - NoSQL Honeypot Framework
NoSQL-Honeypot-Framework (NoPo) is an open source honeypot for nosql databases that automates the process of detecting attackers,logging attack incidents. The simulation engines are deployed using the...
View ArticleClik here to view.
Web Security Dojo - Training Environment for Web Application Security...
A free open-source self-contained training environment for Web Application Security penetration testing. Tools + Targets = DojoWhat?Various web application security testing tools and vulnerable web...
View ArticleClik here to view.
Damn Vulnerable Web App - PHP/MySQL Training Web Application that is Damn...
Damn Vulnerable Web App (DVWA) is a PHP/MySQL web application that is damn vulnerable. Its main goals are to be an aid for security professionals to test their skills and tools in a legal environment,...
View ArticleClik here to view.
PentestBox - Portable Penetration Testing Distribution for Windows Environments
PentestBox is not like other Penetration Testing Distributions which runs on virtual machines. It is created because more than 50% of penetration testing distributions users uses windows.So it provides...
View ArticleClik here to view.
WAIDPS - Wireless Auditing, Intrusion Detection & Prevention System
WAIDPS is an open source wireless swissknife written in Python and work on Linux environment. This is a multipurpose tools designed for audit (penetration testing) networks, detect wireless intrusion...
View ArticleClik here to view.
I2P - The Invisible Internet Project
I2P is an anonymous network, exposing a simple layer that applications can use to anonymously and securely send messages to each other. The network itself is strictly message based (a la IP), but there...
View ArticleClik here to view.
SQLiPy - Plugin for Burp Suite that integrates SQLMap using the SQLMap API
SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.SQLMap comes with a RESTful based server that will execute SQLMap scans. This plugin can start the API for you or...
View ArticleClik here to view.
BypassWAF - Burp Plugin to Bypass Some WAF Devices
Add headers to all Burp requests to bypass some WAF products. This extension will automatically add the following headers to all requests. X-Originating-IP: 127.0.0.1 X-Forwarded-For: 127.0.0.1...
View ArticleClik here to view.
ChromePass - Chrome Browser Password Recovery Tool
ChromePass is a small password recovery tool that allows you to view the user names and passwords stored by Google Chrome Web browser. For each password entry, the following information is displayed:...
View ArticleClik here to view.
Firefox Autocomplete Spy - Tool to View or Delete Autofill Data from Mozilla...
Firefox Autocomplete Spy is the free tool to easily view and delete all your autocomplete data from Firefox browser. Firefox stores Autocomplete entries (typically form fields) such as login name,...
View ArticleClik here to view.
The Exploit-Database Git Repository
This is the official repository of The Exploit Database, a project sponsored by Offensive Security.The Exploit Database is an archive of public exploits and corresponding vulnerable software, developed...
View Article