Security Training Share
WPScan is a black box WordPress vulnerability scanner. Changelog v3.5.4 Fixes an issue in Target#scope_url_pattern when the Target url was invalid according to PublicSuffix, such as an IPv6 address – #1341 Removes the vulnerabilities key from plugin...
The OWASP Zed Attack Proxy (ZAP) is easy to use integrated penetration testing tool for finding vulnerabilities in web applications. It is designed to be used by people with a wide range of security...
pocsuite3 pocsuite3 is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec 404 Team. It comes with a powerful proof-of-concept engine, many powerful features for the ultimate penetration testers and security...
GitMAD (Git Monitor, Alert, Discover) GitMAD is a full stack application that monitors Github for a given keyword(s) or domain. GitMAD searches code hosted on Github for a matching keyword. On finding a match,...
Deep Explorer It is a tool developed in python which purpose is the search of hidden services in the tor network, using Ahmia Browser and crawling the links obtained. Install git clone https://github.com/blueudp/Deep-Explorer.git pip3...
ffuf – Fuzz Faster U Fool A fast web fuzzer written in Go. Heavily inspired by the great projects gobuster and wfuzz. Features Fast! Allows fuzzing of HTTP header values, POST data, and different parts of URL,...
socialscan socialscan offers accurate and fast checks for the email address and username usage on online platforms. Given an email address or username, socialscan returns whether it is available, taken or invalid on online platforms. Its speed...
Cloud Security Audit Cloud Security Audit is a command line tool that scans for vulnerabilities in your AWS Account. In an easy way, you will be able to identify unsecure parts of your infrastructure...
ScanQLi ScanQLi is a simple SQL injection scanner with some additionals features. This tool can’t exploit the SQLi, it just detects them. Tested on Debian 9 Features Classic Blind Time-based GBK (soon) Recursive scan...
Overview Bandit is a tool designed to find common security issues in Python code. To do this Bandit processes each file builds an AST from it and runs appropriate plugins against the AST nodes....
droopescan A plugin-based scanner that aids security researchers in identifying issues with several CMS: Drupal. SilverStripe. WordPress. Partial functionality for: Joomla (version enumeration and interesting URLs only). Moodle (plugin & theme very limited, watch...
PhoneInfoga Information gathering & OSINT reconnaissance tool for phone numbers. One of the most advanced tools to scan phone numbers using only free resources. The goal is to first gather basic information such as...
CyberChef The Cyber Swiss Army Knife CyberChef is a simple, intuitive web app for carrying out all manner of “cyber” operations within a web browser. These operations include simple encoding like XOR or Base64,...
DorkMe DorkMe is a tool designed with the purpose of making easier the searching for vulnerabilities with Google Dorks, such as SQL Injection vulnerabilities. Google hacking, also named Google dorking, is a computer hacking...
Suggested Reading TRENDING Linux news