Security Training Share
>_ Root the Box Root the Box is a real-time capture the flag (CTF) scoring engine for computer wargames where hackers can practice and learn. The application can be easily configured and modified for...
Pocsuite is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec Security Team. It comes with a powerful proof-of-concept engine, many niche features for the ultimate penetration testers and security researchers....
Amass is the subdomain enumeration tool with the greatest number of disparate data sources that performs analysis of the resolved names in order to deliver the largest number of quality results. Amass performs scraping...
CloudFail is a tactical reconnaissance tool which aims to gather enough information about a target protected by CloudFlare in the hopes of discovering the location of the server. Using Tor to mask all requests,...
sn0int sn0int is an OSINT framework and package manager. It was built for IT security professionals and bug hunters to gather intelligence about a given target or about yourself. It is enumerating attack surface...
Archery is an opensource vulnerability assessment and management tool which helps developers and pentesters to perform scans and manage vulnerabilities. Archery uses popular opensource tools to perform comprehensive scanning for web application and network....
BabySploit is a penetration testing toolkit aimed at making it easy to learn how to use bigger, more complicated frameworks like Metasploit. With a very easy to use UI and toolkit, anybody from any...
Osmedeus Automatic Reconnaissance and Scanning in Penetration Testing What is Osmedeus? It allows you to do boring stuff in Pentesting automatically like reconnaissance and scanning the target by run the collection of awesome tools....
Sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche...
EaST: Exploits And Security Tools Pentest framework environment is the basis of IT security specialist’s toolkit. This software is essential as for learning and improving knowledge in IT systems attacks and for inspections and...
TROMMEL sifts through directories of files to identify indicators that may contain vulnerabilities. It identifies the following indicators related to: Secure Shell (SSH) key files Secure Socket Layer (SSL) key files Internet Protocol (IP)...
SSLyze Fast and powerful SSL/TLS server scanning library for Python 2.7 and 3.4+. Description SSLyze is a Python library and a CLI tool that can analyze the SSL configuration of a server by connecting...
SQLiScanner Automatic SQL injection with Charles and sqlmapapi Installation Preferably, you can download SQLiScanner by cloning the Git repository: git clone https://github.com/0xbug/SQLiScanner.git –depth 1 You can download sqlmap by cloning the Git repository: git...
Whitewidow is an open source automated SQL vulnerability scanner, that is capable of running through a file list, or can scrape Google for potentially vulnerable websites. It allows automatic file formatting, random user agents,...
