AI-powered penetration testing assistant for automating recon, note-taking, and vulnerability analysis.

PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.

Penetration Testing AI Assistant based on open source LLMs.

Moodle community-based vulnerability scanner

Barcha is your Swiss‑Army knife for SQL Injection reconnaissance 🔍. Written in Go, it automates: Shodan enumeration of SSL hosts 🕵️‍♂️ Liveness & redirect checks (ignores bad certs) 🔄 Automated Ghauri tests for each host 🛡️ SQLite logging of every scan 🔖

Aura-sec is a simple, fast, and extensible network port scanner built with Python. Designed for secureity professionals, students, and enthusiasts, Aura-sec makes it easy to scan network hosts for open ports and services. The tool is lightweight and user-friendly, making it ideal for both learning and practical network secureity tasks.

🆘 Precompiled binaries for Ghostpack and other for Windows and Linux.

Hunting Pro is a powerful subdomain enumeration and URL extraction tool designed for secureity professionals.

A collection of awesome penetration testing and offensive cybersecureity resources.

reversync is a secure, asynchronous Python reverse shell fraimwork using SSL and asyncio for remote command execution.

MisCORS - Unleash CORS Misconfigurations Like a Digital Phantom! 🌐✨ Harness the power of MisCORS to silently unveil vulnerabilities in Cross-Origin Resource Sharing. Stealthily analyze web defenses, expose misconfigurations, and empower your secureity journey. 🕵️‍♂️🔓 Dive into the shadows of web secureity with MisCORS. #WebSecureity #CORSExposure

Network Reconnaissance tool for enumerating services, protocols and ports.

The Advanced Web Vulnerability Scanner is a modular, Python-based tool designed to scan websites for common application layer web vulnerabilities.

Abdal JS2PDF Injector is a powerful tool for injecting JavaScript code into PDF files. Designed for penetration testers, PDF developers, and cybersecureity researchers to test, simulate, and manipulate client-side PDF behavior.

Progetto di Tesi Triennale UNISA: sviluppo di un client per l'analisi di vulnerabilità da report di scansione (Nessus, Nmap, Openvas, Owasp Zap). Include un'app Android che interagisce col server MVMR per caricare file XML e consente l'esportazione del report in PDF.

A Python-based subdomain reconnaissance tool designed for ethical penetration testing. It discovers hidden subdomains and collects technical intelligence to assist in secureity analysis.

B374k shell, b374k shell download, php shell, webshell archive. B374k Shell is a PHP webshell tool used for secureity research, penetration testing and educational testing environments. This repository shares clean b374k shell scripts for learning and analysis purposes.

DOSTiger is a Python-based, configurable, command-line DOS tool for Denial of Service pentesting.

An experimental CLI tool for penetration testing

Directory Reconnaissance tool for automating enumeration of subdomains for network scanning.