Stars
Information gathering framework for phone numbers
In-depth attack surface mapping and asset discovery
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Directory/File, DNS and VHost busting tool written in Go
Reconnaissance tool for GitHub organizations
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
Block spying and tracking on Windows
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
A tool to perform Kerberos pre-auth bruteforcing
Scan for misconfigured S3 buckets across S3-compatible APIs!
XRay is a tool for recon, mapping and OSINT gathering from public networks.
Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/
🔨 A modern multiple reverse shell sessions manager written in go
raven is a Linkedin information gathering tool that can be used by pentesters to gather information about an organization employees using Linkedin.
GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or…
Go shellcode loader that combines multiple evasion techniques