Prithvi A Report Generation Tool for Security Assessment Technology Used Angularjs for frontend MySQL as Database NodeJS (ExpressJS) as our backend Setup Clone the repo: git clone https://github.com/vegabird/prithvi.git Create Database `reporting` in a server (We used...
ODIN Observe, Detect, and Investigate Networks A Python tool for automating intelligence gathering, testing and reporting. ODIN is still in active development, so check the dev branch for the bleeding edge. Feedback is welcome!...
Information Gathering / Network PenTest / Vulnerability Analysis / Web Information Gathering / Web Vulnerability Analysis / WebApp PenTest
by do son · Published August 29, 2018
Red Team Arsenal is a web/network security scanner which has the capability to scan all company’s online facing assets and provide a holistic security view of any security anomalies. It’s a closely linked collection of security engines...
Prowl Prowl is an email harvesting tool that scrapes Yahoo for Linkedin profiles associated to the user’s search terms and identifies job titles. It also identifies current job listings for the specified organisation. Installation...
Web Exploitation / Web Information Gathering / Web Vulnerability Analysis
by do son · Published August 27, 2018 · Last modified July 19, 2020
BlackWidow is a python based web application spider to gather subdomains, URL’s, dynamic parameters, email addresses and phone numbers from a target website. This project also includes Inject-X fuzzer to scan dynamic URL’s for...
Namechk Osint tool based on namechk.com for checking usernames on more than 100 websites, forums, and social networks. Download git clone https://github.com/HA71/Namechk.git Use Search available username: ./namechk.sh <username> -au Search available username on specifics websites: ./namechk.sh <username>...
pathbrute Pathbrute is a DirB/Dirbuster type of tool designed to brute force directories and files names on web/application servers. However, it has some new tricks. It is no longer a dumb directories/files brute force...
WhatCMS.sh CMS Detection and Exploit Kit based on Whatcms.org API. Introduction Whatcms.sh can currently detect the use of more than 330 different CMS applications and services to later indicate a list of valid security audit tools for the...
CloudSploit CloudSploit by Aqua is an open-source project designed to allow detection of security risks in cloud infrastructure accounts, including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), Oracle Cloud Infrastructure (OCI),...
Gopherus If you know a place which is SSRF vulnerable then, this tool will help you to generate Gopher payload for exploiting SSRF (Server Side Request Forgery) and gaining RCE (Remote Code Execution). And...
Information Gathering / Vulnerability Analysis / Web Information Gathering / Web Vulnerability Analysis
by do son · Published August 21, 2018
shodan-scanner is intended to be a tool to more easily continuously monitor Shodan for relevant hosts using a local database for easier inventory. File description: requirements.txt: Contains Python dependencies essential for scripts to run correctly....
SleuthQL is a python3 script to identify parameters and values that contain SQL-like syntax. Once identified, it will then insert SQLMap identifiers (*) into each parameter where the SQL-esque variables were identified. SleuthQL requires...
POOPAK | TOR Hidden Service Crawler OSINT Tool Search Engine Docker-based This is an application for crawling, scanning and data gathering of TOR hidden services. The concept through this project is to have a...
testxss PHP tool to test XSS. Note that this is an automated tool, a manual check is still required. Download git clone https://github.com/gwen001/testxss.git Use Usage: php testxss.php [OPTIONS] Options: -h, –help print this help –burp...
Web Information Gathering / WebApp PenTest
by do son · Published August 18, 2018 · Last modified May 1, 2024
GitMiner The advanced search tool and automation in Github. This tool aims to facilitate research by code or code snippets on github through the site’s search page. Changelog v2.0 News: Search in codes with...
Secure Your Connection
