Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
d17b3cbbd305c52b9cd0d5141f41954882f398db44f26c10cb45fdaaa46a99d2
D3LT4 is a mutation of smartd0rk3r and can search for 10,446 google dorks and scans for SQL injection vulnerabilities.
be767b4658a77e5890553222b73777e9942803cc8ab3a647ed3238a18d178b3c
find_dns is a tool that scans networks looking for DNS servers.
4da66d417bfefc4925a3eeb9dd2262ff8c71c6e574b06dbc73d0ff5e977c9405
VBScan is a black box vBulletin vulnerability scanner written in perl.
457ed0a017cfc3244c581d64baec046689e95504aaf78b4d9cc1883734cd58ed
BruteX is a bash script that wraps nmap, hydra, and wfuzz to perform scanning with automatic brute forcing.
b602668839864f0994bc9fc07ba540f3e96d6b0f1f15156d8933a1da67db0c65
Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
b2b1c7b1e4a5c6a71a131aa0a9589a106ac6431993dc3ad47f5082c3fd9a5ac8
INURL is a php tool written to make searching across multiple engines easier when researching web site targets.
46d0ecb060e9ed535e15234b1dd662cffc850ac87a4c0001b555c95e639dda2c
HostBox SSH is a python script will scan servers and routers for insecure SSH configurations.
b55137452b2a45adab3c782adc62d4c2c7ca8f68e4dd4c9594cfb5c4e7811d02
Ftpmap scans remote FTP servers to identify what software and what versions they are running. It uses program-specific fingerprints to discover the name of the software even when banners have been changed or removed, or when some features have been disabled. also FTP-Map can detect vulnerable servers by the FTP software/version.
ebc1569694af33d9415ea3ad4678b7d495a42af3d0032a0a432a0536fd368315
PHP script that leverages user agents to scan for the shellshock vulnerability.
c3fb3a101c43ddb2ec35601038641d0e74080bb19c7ab688fea8961529e512d4
0d1n is a web security tool for fuzzing various HTTP payloads. It's written in C and uses libcurl.
49e38de1db9e9f03ddeec16c1bc11195386ae16797980880868f9d8880ab2dec
Commix (short for [comm]and [i]njection e[x]ploiter) has a simple environment and it can be used, from web developers, penetration testers or even security researchers to test web applications with the view to find bugs, errors or vulnerabilities related to command injection attacks. By using this tool, it is very easy to find and exploit a command injection vulnerability in a certain vulnerable parameter or string. Commix is written in Python programming language.
ebfd7aa7484ac7375a5fd08220e7a2f8ebe5623a98d5baf8305a57d0c0f9f85b
fwknop implements an authorization scheme that requires only a single encrypted packet to communicate various pieces of information, including desired access through a Netfilter policy and/or specific commands to execute on the target system. The main application of this program is to protect services such as SSH with an additional layer of security in order to make the exploitation of vulnerabilities much more difficult. The authorization server works by passively monitoring authorization packets via libpcap.
bb1d6613c5df7d0723b1a1100ed5cf195677a314d64b50433da90882a491b074
Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
b9eda40dc7133d2369b344300b056ee97cf546f41848fcb8094cb573d87b5007
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
16ed596c8c283b8e4c635ada25ceb042371384ae09b3238a658ca60801a73c24
Simple PHP script that explores WebDAV vulnerable sites that allow arbitrary uploads.
82096e8ddc00f8baec5d02ce1a0576b3e0253c168398a7b80b0b02473a331d36
DNS Spider is a multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation.
ab05f4446447485d9e01006db792d8ceff3738d1799373c3c8b484e2a5bdd401
A2SV is an SSL scanning tool that checks to see if a service is vulnerable to Heartbleed, Poodle, and CCS injection vulnerabilities.
112dbd2e82a2b479818f408b6b0456c09bef96609f0ab0af03edd5c5a7e0fa3a
XSSYA is a python tool that attempts malicious payloads for bypassing web application firewalls.
4a891304832b942ae02f0c50aa5f3cd5605ad3eb59dc5dba4e838a7e9224c7ce
tmap is a fast multi-threaded port scanner that tunnels through TOR.
db20e08df203cb56e43fdac32a8d5e55b9a58acd729cf037136a8348620e6350
Cross Site Tracer is a python script to check remote web servers for cross-site tracing.
dc8726f4ecbe474ad3183b07166b65bf745d3357d8e7b02e746133bc810886fc
Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.
7c6df4b1a1793336b821241ea951d284e00aaeff40b1141e0241b1d09ece8608
Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
546b134942e14428952c2ca513d63be123eda20b6838f21a030ccbaee216ac44
Router Hunter is a php script that scans for and exploits DNS change vulnerabilities in Shuttle Tech ADSL Modem-Router 915 WM and D-Link DSL-2740R routers and also exploits the credential disclosure vulnerability in LG DVR LE6016D devices.
9cf69c958fcf9b85f5aff152f7b92ca2f6c7e10bf683c01ea6febad6a68716b9
Maligno is an open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. The shellcode is encrypted with AES and encoded with Base64 prior to transmission.
43f36f577dec1520eff727da3da49af10f27705a92d3ecf435b6d6c1ff4a669a