snmpwn: SNMPv3 User Enumerator and Attack tool
SNMPwn is an SNMPv3 user enumerator and attack tool. It is a legitimate security tool designed to be used by security professionals and penetration testers against hosts you have permission...
Category: Information Gathering
evilscan v1.9.1 releases: NodeJS Massive IP Ports Scanner
evilscan Massive ip/port scanner Features individual IP or IP range scan individual port, ports list, or ports range banner grabbing (not fully implemented, works with native verbose ports only) IAC...
ldapdomaindump v0.9.4 releases: Active Directory information dumper via LDAP
LDAPDomainDump Active Directory information dumper via LDAP In an Active Directory domain, a lot of interesting information can be retrieved via LDAP by any authenticated user (or machine). This makes...
Angry IP Scanner v3.9.1 releases: fast and friendly network scanner
Angry IP scanner is a very fast IP address and port scanner. It can scan IP addresses in any range as well as any of their ports. It is cross-platform...
sandmap v1.2.0 release: network and system reconnaissance using the massive Nmap engine
Sandmap is a tool for supporting network and system reconnaissance using the massive Nmap engine. It provides a user-friendly interface, automates and speeds up scanning and allows you to easily use many...
nmap-bootstrap-xsl: A Nmap XSL implementation with Bootstrap
nmap-bootstrap-xsl A Nmap XSL implementation with Bootstrap. Download git clone https://github.com/honze-net/nmap-bootstrap-xsl.git How to use Add the nmap-bootstrap.xsl as stylesheet to your Nmap scan. Example: xx Open the scanme.xml with your Web browser. It...
mail-security-tester: testing framework for mail security and filtering solutions
Mail Security Testing Framework A testing framework for mail security and filtering solutions. IMPORTANT: Don’t do anything evil with this! Tests of cloud or otherwise hosted solutions should always be approved...
GoogleScraper: Scraping search engines professionally
GoogleScraper – Scraping search engines professionally GoogleScraper parses Google search engine results (and many other search engines _) easily and in a fast way. It allows you to extract all found...
Pocsuite v2.0.8 releases: open-sourced remote vulnerability testing framework
Pocsuite is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec Security Team. It comes with a powerful proof-of-concept engine, many niche features for the ultimate penetration...
Swaks: Swiss Army Knife for SMTP
Swaks’ primary design goal is to be a flexible, scriptable, transaction-oriented SMTP test tool. It handles SMTP features and extensions such as TLS, authentication, and pipelining; multiple version of the...
trape v2.0 releases: People tracker on the Internet
trape (open source) People tracker on the Internet: Learn to track the world, to avoid being traced. Trape is an OSINT analysis and research tool, which allows people to track and execute...
reconerator: C# Targeted Attack Reconnissance Tools
reconerator This is a custom .NET assembly which will perform a number of situational awareness activities. There are a number of current feature sets: BASIC – Obtains information from the...
raindance: Reconnaissance tool for Microsoft Office 365
RainDance A toolkit for enumerating and collecting information from Office 365. Raindance uses built-in powershell modules, namely from the MSOnline & AzureAD powershell modules to log into Office 365 tenants...
ssh-auditor v0.18 releases: scan for weak ssh passwords
SSH Auditor The best way to scan for weak ssh passwords on your network Features ssh-auditor will automatically: Re-check all known hosts as new credentials are added. It will only...
ADRecon: Active Directory gathering information tool
ADRecon: Active Directory Recon ADRecon is a tool which extracts and combines various artifacts (as highlighted below) out of an AD environment. The information can be presented in a specially...
