riramar
Follow
Stars
An opinionated list of awesome Python frameworks, libraries, software and resources.
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
real time face swap and one-click video deepfake with only a single image
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Automatic SQL injection and database takeover tool
Certbot is EFF's tool to obtain certs from Let's Encrypt and (optionally) auto-enable HTTPS on your server. It can also act as a client for any other CA that uses the ACME protocol.
Incredibly fast crawler designed for OSINT.
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…
Fast subdomains enumeration tool for penetration testers
The recursive internet scanner for hackers. 🧡
Bandit is a tool designed to find common security issues in Python code.
🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens
Open Source Vulnerability Management Platform
EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
defeating the latest version of ReCaptcha with 91% accuracy
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
Automated All-in-One OS Command Injection Exploitation Tool.
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
A DNS meta-query spider that enumerates DNS records, and subdomains.
A collection of custom security tools for quick needs.
Automatic SSRF fuzzer and exploitation tool