EyeWitness is a rapid web application triage tool designed to take screenshots of websites, provide some server header info, and identify ...
[GoldenEye v2.1] DoS Tool
GoldenEye is a HTTP/S Layer 7 Denial-of-Service Testing Tool. It uses KeepAlive (and Connection: keep-alive) paired with Cache-Control op...
[Parsero] Robots.txt audit tool
Parsero is a free script written in Python which reads the Robots.txt file of a web server and looks at the Disallow entries. The Disallow e...
[Maltrieve] A tool to retrieve malware directly from the source for security researchers
Maltrieve originated as a fork of mwcrawler . It retrieves malware directly from the sources as listed at a number of sites, including: Malc...
[FBHT v2.0] Facebook Hacking Tool
FBHT ( F ace b ook H acking T ool ) is an open-source tool written in Python that exploits multiple vulnerabilities on the Facebook platf...
[Wireless IDS] Ability to detect suspicious activity such as (WEP/WPA/WPS) attack by sniffing the air for wireless packets
Wireless IDS is an open source tool written in Python and work on Linux environment. This tool will sniff your surrounding air traffic for ...
[ZynOS-Attacker] (TP-LINK TD-W8951ND Router) Tool for automated attack on a range of IP
With these scripts you can attack ZynOS routers and modify/extract anything you want on the target router from extracting ISP username and p...
[Hasher v1.0.3] Python tool to locally generate / compare password hashes
Hasher is a tool designed to quickly generate hashes from a plaintext string in a variety of hash formats. It also can quickly compare a ...
[Weevely v1.1] Stealth tiny PHP web shell
Weevely is a stealth PHP web shell that provides a telnet-like console. It is an essential tool for web application post exploitation , an...
[DNSRecon v0.8.6] DNS Enumeration Script
Just updated DNSRecon to check if it can pull the Bind Version by doing a query for the TXT Record version.bind and it will now check if t...
[TheHarvester v2.2] The Information Gathering Suite
The objective of this program is to gather emails, subdomains, hosts, employee names, open ports and banners from different public sources ...
[XSSless] An automated XSS payload generator written in python
An automated XSS payload generator written in python. Usage Record request(s) with Burp proxy Select request(s) you want to generate, then ...
[flunym0us] Vulnerability Scanner for Wordpress and Moodle
Flunym0us is a Vulnerability Scanner for Wordpress and Moodle designed by Flu Project Team. Flunym0us has been developed in Python. Flunym0...
[Avivore] The Twitter-searching Data Miner
Avivore is a Python-based tool that searches Twitter for keywords and then parses any tweets that are found. When parsing, it looks for the...
[Malware Classifier] Malware Analysis Tool
Adobe Malware Classifier is a command-line tool that lets antivirus analysts, IT administrators, and security researchers quickly and easi...
[PDFMiner] Python PDF parser and analyzer
PDFMiner is a tool for extracting information from PDF documents. Unlike other PDF-related tools, it focuses entirely on getting and analyz...
[WinAppDbg 1.5] Python Debugger
The WinAppDbg python module allows developers to quickly code instrumentation scripts in Python under a Windows environment. It uses ctypes ...
[APKinspector] Powerful GUI tool to analyze the Android applications
The goal of this project is to aide analysts and reverse engineers to visualize compiled Android packages and their corresponding DEX code...
[Hasere v0.2] Discover vHosts using Google and Bing
Hasere is a tool that can discovery the virtual hosts and related filetype using google and bing search engines. Optionally, it uses the n...
[Blue|Smash] Bluetooth Penetration Testing Suite
Blue|Smash is a free open source bluetooth pentest suite, powered by python for linux. I built Blue|Smash to aid me in my bluetooth advent...