Security Training Share
celerystalk celerystalk helps you automate your network scanning/enumeration process with asynchronous jobs (aka tasks) while retaining full control of which tools you want to run. Configurable – Some common tools are in the default config, but...
Zeebsploit Zeebsploit-Framework is a tool for pentesting the vulnerability of the web and searching for information-gathering on web and exploitation on a web. Features Installation git clone https://github.com/jaxBCD/Zeebsploit.git cd Zeebsploit chmod +x install...
Pacu Pacu is an open source AWS exploitation framework, designed for offensive security testing against cloud environments. Created and maintained by Rhino Security Labs, Pacu allows penetration testers to exploit configuration flaws within an...
fileGPS When you upload a shell on a web-server using a file upload functionality, usually the file gets renamed in various ways in order to prevent direct access to the file, RCE and file...
VAULT Swiss army knife for hackers Features Scan website for the following vulnerabilities XSS LFI RFI SQLi Scanner Port scanning : ACK, FIN, NULL, XMAS IP scanning : Ping Sweep, ARP SSL vulnerability scan...
WPScan is a black box WordPress vulnerability scanner. Changelog v3.5.4 Fixes an issue in Target#scope_url_pattern when the Target url was invalid according to PublicSuffix, such as an IPv6 address – #1341 Removes the vulnerabilities key from plugin...
Cloud Security Audit Cloud Security Audit is a command line tool that scans for vulnerabilities in your AWS Account. In an easy way, you will be able to identify unsecure parts of your infrastructure...
ScanQLi ScanQLi is a simple SQL injection scanner with some additionals features. This tool can’t exploit the SQLi, it just detects them. Tested on Debian 9 Features Classic Blind Time-based GBK (soon) Recursive scan...
Overview Bandit is a tool designed to find common security issues in Python code. To do this Bandit processes each file builds an AST from it and runs appropriate plugins against the AST nodes....
droopescan A plugin-based scanner that aids security researchers in identifying issues with several CMS: Drupal. SilverStripe. WordPress. Partial functionality for: Joomla (version enumeration and interesting URLs only). Moodle (plugin & theme very limited, watch...
DorkMe DorkMe is a tool designed with the purpose of making easier the searching for vulnerabilities with Google Dorks, such as SQL Injection vulnerabilities. Google hacking, also named Google dorking, is a computer hacking...
SSLyze Fast and powerful SSL/TLS server scanning library for Python 2.7 and 3.4+. Description SSLyze is a Python library and a CLI tool that can analyze the SSL configuration of a server by connecting...
Pown Duct An essential tool for finding blind injection attacks using DNS side-channels. This tool is part of secapps.com open-source initiative. Install This tool is meant to be used as part of Pown.js but it can be invoked...
Open-source vulnerability assessment tool Discover, assess and mitigate known vulnerabilities in your Java and Python projects. The open-source vulnerability assessment tool supports software development organizations in regards to the secure use of open-source components...
Suggested Reading TRENDING Linux news