HackGit

2024-05-21 11:07:56 ​​Offensive OSINT Tools

This repository consists of tools/links that a expert can use during Pentest/RedTeam. At the moment there are a huge number of awesome lists that contain a ton of tools, but the Offensive specialist most often doesn't need them, which is what motivated the creation of this list. These tools cover almost all the needs of the Offensive specialist and will help you get the job done well.

If the tool performs multiple functions, for example collecting subdomains and URLs, it will be listed in two places.

https://github.com/wddadk/Offensive-OSINT-Tools

#OSINT #pentesting #redteam Open / Comment

2024-05-15 12:49:03 ​​BlueToolkit

A versatile Bluetooth Classic vulnerability testing framework, revealing new and old vulnerabilities in Bluetooth devices. Ideal for vulnerability research and penetration testing, we've curated and categorized Bluetooth vulnerabilities with an "Awesome Bluetooth Security" approach.

https://github.com/sgxgsx/BlueToolkit

#cybersecurity #pentesting #redteam Open / Comment

2024-05-12 10:06:57 ​​Omnisci3nt

A powerful web reconnaissance tool designed to unravel the concealed intricacies of the online realm. With a comprehensive array of capabilities, Omnisci3nt offers users the means to delve into various aspects of a target domain, including IP lookup, domain information, SSL certificate details, DNS enumeration, subdomain enumeration, port scanning, web crawling, analysis of technologies utilized, Wayback Machine exploration, DMARC record examination, social media link discovery, and more.

https://github.com/spyboy-productions/omnisci3nt

#cybersecurity #bugbounty #pentesting Open / Comment

2024-05-12 09:52:24 ​​ Crawl4AI

A powerful, free web crawling service designed to extract useful information from web pages and make it accessible for large language models (LLMs) and AI applications.

• Efficient web crawling to extract valuable data from websites
• LLM-friendly output formats (JSON, cleaned HTML, markdown)
• Supports crawling multiple URLs simultaneously
• Replace media tags with ALT.
• Completely free to use and open-source

https://github.com/unclecode/crawl4ai

#cybersecurity #pentesting #bugbounty Open / Comment

2024-05-08 12:52:40 ​​IconJector

This is a Windows Explorer DLL injection technique that uses the change icon dialog on Windows.

https://github.com/0xda568/IconJector

#cybersecurity #pentesting #redteam Open / Comment

2024-05-07 21:00:56 ​​Okta Terrify

A tool to demonstrate how passwordless solutions such as Okta Verify's FastPass or other FIDO2/WebAuthn type solutions can be abused once an authenticator endpoint has been compromised. Whilst Okta Terrify demonstrates Okta specific attacks, the same methodology would typically apply to other passwordless solutions, as generally they all leverage asymmetric cryptography.

https://github.com/CCob/okta-terrify

#cybersecurity #infosec #pentesting Open / Comment

2024-05-06 10:31:23 ​​Misconfig Mapper

A fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

https://github.com/intigriti/misconfig-mapper

#cybersecurity #pentesting #bugbounty Open / Comment

2024-05-05 21:44:55 ​​Subdominator

A powerful tool for passive subdomain enumeration during bug hunting and reconnaissance processes. It is designed to help researchers and cybersecurity professionals discover potential security vulnerabilities by efficiently enumerating subdomains some various free passive resources.

https://github.com/RevoltSecurities/Subdominator

#pentesting #redteam #bugbounty Open / Comment

2024-05-05 10:03:08 ​​SharpBruteForceSSH

A simple #SSH brute force tool written in C#. It is designed to perform dictionary-based brute force attacks on SSH services. The tool takes a target IP address, a list of usernames, and a list of passwords as input. It then attempts to authenticate using each combination of username and password until a successful login is found or all combinations have been exhausted.

https://github.com/HernanRodriguez1/SharpBruteForceSSH

#cybersecurity #pentesting #redteam Open / Comment

2024-05-03 08:46:26 ​​CCTV

Close-Circuit #Telegram Vision revolutionizes location tracking with its open-source design and Telegram API integration. Offering precise tracking within 50-100 meters, users can monitor others in real-time for logistics or safety, redefining how we navigate our surroundings.

https://github.com/IvanGlinkin/CCTV

#OSINT #cybersecurity #infosec Open / Comment