Project Awesome project awesome

Hacking

Collection 16.2k stars GitHub

Contents

Tutorials
Tools
General
Bug bounty
OS
ETC

Tutorials

Tools

Metasploit 37.8k updated 1mo ago

A computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development.

mimikatz 21.4k updated 1y ago

A little tool to play with Windows security

sqlmap 36.9k updated 1mo ago

Automatic SQL injection and database takeover tool

NoSQLMap 3.3k updated 2mo ago

Automated NoSQL database enumeration and web application exploitation tool.

VHostScan 1.3k updated 8mo ago

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages.

SubFinder 13.3k updated 1mo ago

SubFinder is a subdomain discovery tool that discovers valid subdomains for any target using passive online sources.

badtouch 415 updated 2y ago

Scriptable network authentication cracker

PhpSploit 2.4k updated 2y ago

Full-featured C2 framework which silently persists on webserver via evil PHP oneliner

Git-Scanner 377 updated 5y ago

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

masscan 25.6k updated 13d ago

Internet scale portscanner.

Keyscope 410 updated 9mo ago

an extensible key and secret validation tool for auditing active secrets against multiple SaaS vendors

pig 472 updated 5y ago

A Linux packet crafting tool

mitmsocks4j 37 updated 13y ago

Man-in-the-middle SOCKS Proxy for Java

ssh-mitm 1.7k updated 4y ago

An SSH/SFTP man-in-the-middle tool that logs interactive sessions and passwords.

Nipe 2.3k updated 1mo ago

A script to make Tor Network your default gateway.

Habu 979 updated 4mo ago

Python Network Hacking Toolkit

Firesheep 2.4k updated 2y ago

Free program for HTTP session hijacking attacks.

Scapy 335 updated 11mo ago

A Python tool and library for low level packet creation and manipulation

Amass 14.5k updated 20d ago

In-depth subdomain enumeration tool that performs scraping, recursive brute forcing, crawling of web archives, name altering and reverse DNS sweeping

sniffglue 1.2k updated 1y ago

Secure multithreaded packet sniffer

Netz 398 updated 5y ago

Discover internet-wide misconfigurations, using zgrab2 and others.

RustScan 19.5k updated 1mo ago

Extremely fast port scanner built with Rust, designed to scan all ports in a couple of seconds and utilizes nmap to perform port enumeration in a fraction of the time.

PETEP 226 updated 2y ago

Extensible TCP/UDP proxy with GUI for traffic analysis & modification with SSL/TLS support.

sleuthkit 3.1k updated 9d ago

A library and collection of command-line digital forensics tools

CyLR

NTFS forensic image collector

xortool 1.5k updated 11mo ago

A tool to analyze multi-byte XOR cipher

Ciphey 21.4k updated 10d ago

Automated decryption tool using artificial intelligence & natural language processing.

CyLR 723 updated 3y ago

NTFS forensic image collector

Docker Images for Penetration Testing & Security

official OWASP ZAP 14.9k updated 1mo ago
OWASP Juice Shop

On Docker

OWASP NodeGoat 2.0k updated 1y ago

On Docker

official WPScan 9.6k updated 6d ago
Official Metasploit
Damn Vulnerable Web Application (DVWA)
Vulnerable WordPress Installation
Vulnerability as a service: Shellshock 22 updated 6y ago
Vulnerability as a service: Heartbleed 15 updated 6y ago
Security Ninjas
Arch Linux Penetration Tester
Docker Bench for Security 22 updated 10y ago
OWASP Security Shepherd updated 3y ago
OWASP WebGoat Project docker image
OWASP Mutillidae II Web Pen-Test Practice Application
Docker Metasploit
Vulnerable WordPress Installation 45 updated 9y ago

Disassemblers and debuggers

x64dbg 48.0k updated 1mo ago

An open-source x64/x32 debugger for Windows

radare2 23.5k updated 8d ago

A portable reversing framework

plasma 3.1k updated 4y ago

Interactive disassembler for x86/ARM/MIPS. Generates indented pseudo-code with colored syntax code.

ScratchABit 412 updated 5y ago

Easily retargetable and hackable interactive disassembler with IDAPython-compatible plugin API

Capstone 8.6k updated 1mo ago

Decompilers

Krakatau 2.2k updated 1mo ago

the best decompiler I have used. Is able to decompile apps written in Scala and Kotlin into Java code. JD-GUI and Luyten have failed to do it fully.

JD-GUI 15.1k updated 1y ago
Luyten 5.1k updated 1y ago

one of the best, though a bit slow, hangs on some binaries and not very well maintained.

JADX 47.8k updated 1mo ago

a decompiler for Android apps. Not related to JAD.

ILSpy 24.8k updated 1mo ago

an open-source .NET assembly browser and decompiler

dnSpy 29.1k (archived)

a .NET assembly editor, decompiler, and debugger

cutter

a decompiler based on radare2.

retdec 8.5k updated 10mo ago
snowman
uncompyle6 4.2k updated 2mo ago

decompiler for the over 20 releases and 20 years of CPython.

Deobfuscators

de4dot 7.4k (archived)

.NET deobfuscator and unpacker.

JS Beautifier 9.0k updated 16d ago

Other

nudge4j 164 updated 6y ago

Java tool to let the browser talk to the JVM

dex2jar 13.1k updated 1y ago

Tools to work with Android .dex and Java .class files

antinet 305 (archived)

.NET anti-managed debugger and anti-profiler code

Execution logging and tracing

mitmproxy 43.3k updated 8d ago

An interactive, SSL-capable man-in-the-middle proxy for HTTP with a console interface

USBPcap 1.1k updated 1y ago

USB capture for Windows.

dynStruct 326 updated 6y ago

structures recovery via dynamic instrumentation.

drltrace 419 updated 5y ago

shared library calls tracing.

Binary files examination and editing - Hex editors

wxHexEditor 613 updated 1y ago

Binary files examination and editing - Other

Binwalk 13.9k updated 23d ago

Detects signatures, unpacks archives, visualizes entropy.

Veles 1.2k (archived)

a visualizer for statistical properties of blobs.

Kaitai Struct 4.6k updated 14d ago

a DSL for creating parsers in a variety of programming languages. The Web IDE is particularly useful for reverse-engineering.

Protobuf inspector 1.1k updated 5y ago
DarunGrim 364 updated 5y ago

executable differ.

DBeaver 49.3k updated 1mo ago

a DB editor.

Dependencies 11.3k updated 2y ago

a FOSS replacement to Dependency Walker.

General

Bug bounty

Bug bounty

Awesome bug bounty resources by EdOverflow 6.4k updated 2y ago

OS

tools

empire 7.8k (archived)

A post exploitation framework for powershell and python.

silenttrinity 2.3k updated 2y ago

A post exploitation tool that uses iron python to get past powershell restrictions.

PowerSploit 12.9k (archived)

A PowerShell post exploitation framework

ebowla 762 updated 7y ago

Framework for Making Environmental Keyed Payloads

ETC