Winpayloads is a python based tool which combines some of the Powershell Empire features along with the metasploit framework to create windows...
Cmsmap is a python based CMS scanner for automating the process of vulnerability assessment in most popular CMS’s. It can search for...
Many times when you want to perform an exploitation to a windows target, you need a payload that is undetectable to Antivirus...
Brosec is an open source terminal based tool to help all the security professionals generate the right payloads and commands. It can...
Joomscan is a scanner by OWASP, which aims to automate the task for vulnerability assessments for Joomla based sites. Based in perl,...
PrivilegeEsc-Linux is a simple script which checks the security on a Linux machine. It can run many different options, such as for...
NoSQLMap is an open source python based tool, designed to audit and automate injection attacks on NoSQL databases, such as Mongo DB...
East is a Python based security framework toolkit. It acts as a HTTP server and contains a wide range of different exploits...
MassExploitConsole is a python based easy-to-use cli tool for executing exploits. It has a collection of exploits to execute, built-in scanner for...
Brutex is a shell based open source tool to make your work faster. It combines the power of Nmap, Hydra and DNSenum....
Kalitorify is a shell based script for Kali Linux. It uses iptables and TOR to create a transparent proxy. In simple terms,...
BLACKEYE is a LAN phishing tool that can clone more than 30 networks templates to generate the phishing pages. Some of these...
Knock is a python based tool for enumerating subdomains on a targeted domain. You can use a custom wordlist and also you...
I know what you are thinking, bruteforce doesn’t work anymore in many cases. However, Blazy is not just another brute-force tool. It...
Based on python, the Veil-Framework is one of the most popular tools for Anti-Virus evasion. You can generate many different Metasploit payloads...
The Evil Access Point (AP) attack has been around for a long time. There are several ways to create this attack and...
Galileo is a free web application auditing framework that can perform various penetration testing tasks, such as information gathering, fingerprinting, bruteforcing, injection...
Xerosploit is a python-based toolkit for creating efficient Man In The Middle attacks which combines the power of bettercap and nmap. The...
Red Hawk is an open source tool that is used for information gathering and certain vulnerability scanning. Red Hawk detects Content Management...
Recon-ng is a reconnaissance framework that can perform open source web based information gathering for a given target. Recon-ng is loaded with...
PhishX is a python tool that can capture user credentials using a spear phishing attack. Spear phishing is a targeted form of...