Fuzz 403ing endpoints for bypasses - use this script to fuzz endpoints that return a 401/403.
Linux Driver for USB WiFi Adapters that are based on the RTL8814AU Chipset.
ADExplorerSnapshot.py is an AD Explorer snapshot ingestor for BloodHound.
Query/modify DNS records for Active Directory integrated DNS via LDAP.
adPEAS is a Powershell tool to automate Active Directory enumeration.
A fast enumeration tool for Windows Active Directory Pentesting written in Go.
Is the fastest terminal emulator in existence. Using the GPU for rendering enables optimizations that simply aren't possible without it.
A tool for visual inspection of websites across a large amount of hosts and is convenient for quickly gaining an overview of HTTP-based attack surface.
ArcMenu is an application menu for GNOME Shell, designed to provide a more traditional user experience and workflow. This extension has many features, including multiple menu layout styles, GNOME search, quick access to system shortcuts, and more! If you are a new user to GNOME and are looking for a Windows style start menu, this extension will be perfect for you!
Aria2 is a command line download client with resuming and segmented downloading. Supported protocols are HTTP/HTTPS/SFTP/FTP/BitTorrent and it also supports Metalink.
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Easily rotate your AWS access key.
Lightweight CLI download accelerator.
Backscatter is the incorrectly automated bounce messages sent by mail servers, typically as a side effect of incoming spam.can be used.
Flash OS images to SD cards & USB drives, safely and easily.
Brute force wrapper for ike-scan.
BIOS Master Password Generators for Laptops.
BloodHoundLoader, tool to set attributes in BloodHound for all the items contained in files.
A script to find admin login pages and EAR vulnerabilities.
Is a SSH, FTP, Telnet, PostgreSQL, RDP, VNC brute forcing tool with Hydra, Medusa and Ncrack.
WebProxy for analysis.
Bypass Paywalls Clean
Add-on allows you to read articles from (supported) sites that implement a paywall.
CamOver is a camera exploitation tool that allows to disclosure network camera admin password.
Cisco Configuration Analysis Tool.
Utility to play with ADCS, allows to request tickets and collect information about related objects.
A CLI tool to extract server certificates.
Active Directory certificate abuse.
Active Directory Certificate Services enumeration and abuse.
CeWL - Custom Word List generator.
Chameleon is a tool which assists red teams in categorizing their infrastructure under arbitrary categories.
Validates and parses SPF amd DMARC DNS records.
Checksec tool in Python, Rich output, based on LIEF. A simple tool to verify the security properties of your binaries.
Change password of a user in a Windows SAM file.
Crowbar is a brute force tool which supports OpenVPN, Remote Desktop Protocol, SSH Private Keys and VNC Keys..
Free client-side encryption for your cloud files. Open source software: No backdoors, no registration.
Manage plain dm-crypt and LUKS encrypted volumes.
CTF Flag Generator
A CTF leet flag generator.
Is a tool to transfer data from or to a server, using one of the supported protocols. The command is designed to work without user interaction.
CutyCapt is a small cross-platform command-line utility to capture WebKit’s rendering of a web page into a variety of vector and bitmap formats, including SVG, PDF, PS, PNG, JPEG, TIFF, GIF, and BMP.
Python3 terminal application that contains 260+ Neo4j cyphers for BloodHound data sets.
XSS Scanning and Parameter Analysis tool.
Dash to Panel is an icon taskbar for Gnome Shell. This extension moves the dash into the gnome main panel so that the application launchers and system tray are combined into a single panel, similar to that found in KDE Plasma and Windows 7+. A separate dock is no longer needed for easy access to running and favorited applications.
Free multi-platform database tool for developers, database administrators, analysts and all people who need to work with databases. Supports all popular databases: MySQL, PostgreSQL, SQLite, Oracle, DB2, SQL Server, Sybase, MS Access, Teradata, Firebird, Apache Hive, Phoenix, Presto, etc.
Graphical editor for gsettings and dconf.
DIRB is a Web Content Scanner.
Ditto is a small tool that accepts a domain name as input and generates all its variants for an homograph attack as output, checking which ones are available and which are already registered.
Tool for dumping a computer's DMI (some say SMBIOS) table contents in a human-readable format.
Domain name permutation engine for detecting homograph phishing attacks, typosquatting, fraud and brand impersonation.
A script to dump files and folders remotely from a Windows SMB share.
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile.
Remove duplicate lines from INFILE without changing order.
Tool to backup DVDs.
E2B - the USB multiboot solution for professionals.
EmailSecCheck is a lightweight Python utility used to check for common SPF/DMARC misconfigurations that may allow for email spoofing.
A tool for enumerating information from Windows and Samba systems.
Find Microsoft Exchange instance for a given domain and identify the exact version.
Read and write meta information in files.
Is a tool used to capture screenshots from a list of URLs.
Fight Flash Fraud - testing performance of flash / disks.
Detecting and decoding F5 BIG IP cookies in bash.
A tool to search for targets vulnerable to SQL Injection. Performs the search using Google search engine.
A fast web fuzzer written in Go.
Creating ASCII text banners or large letters out of ordinary text.
Browser made for developers.
Powerful yet simple-to-use screenshot software.
Mitigate the risk anyone takes a 0 for a O.
Messaging app for WhatsApp, Slack, Telegram, HipChat, Hangouts and many many more.
Create ISO9660/Joliet/HFS filesystem with optional Rock Ridge attributes.
Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals.
A tool to dump a git repository from a website.
GitDump dumps the source code from .git when the directory traversal is disabled.
This repository contains three small python/bash scripts used for the Git research.
Directory/File, DNS and VHost busting tool written in Go.
Dump ntds.dit really fast.
A website screenshot utility written in Golang, that uses Chrome Headless to generate screenshots of web interfaces using the command line.
Group Policy Preferences cpassword decryptor.
GRABIFY IP LOGGER.
HandBrake is a tool for converting video from nearly any format to a selection of modern, widely supported codecs.
Send (almost) arbitrary TCP/IP packets to network hosts.
A program that reads HTML and Markdown source files or web pages and generates corresponding EPUB, HTML, PostScript, or PDF files with an optional table of contents.
Interactive process viewer.
Probe for hardware.
Hydra is a tool to guess/crack valid login/password pairs.
Converts many CD-ROM image formats to iso9660.
NetX provides a drop-in replacement for javaws (Java Web Start). Since upstream NetX is dead, the IcedTea Web project is hosting a fork of the original code. However, as icedtea-web has evolved to complex set of tools, extensions and tests, it has now only a few lines of code shared with the original implementation.
Scanner for IIS Tilde vulnerability.
Discover and fingerprint IKE hosts (IPsec VPN Servers).
Command line system information script for console and IRC.
This Python script can be used to bypass IP source restrictions using HTTP headers.
Open Source password security auditing and password recovery tool available for many operating systems.
OWASP JoomScan (short for [Joom]la Vulnerability [Scan]ner) is an opensource project in perl programming language to detect Joomla CMS vulnerabilities and analysis them.
jq is a tool for processing JSON inputs, applying the given filter to its JSON text inputs and producing the filter's results as JSON on standard output.
Disable and Customize GNOME shell UI Elements.
KeeFarce allows for the extraction of KeePass 2.x password database information from memory. The cleartext information, including usernames, passwords, notes and url's are dumped into a CSV file in %AppData%
This tool is designed to assist in quickly bruteforcing valid Active Directory accounts through Kerberos Pre-Authentication.
Dump LAPS Passwords.
LDAP Nom Nom
Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP).
LDAP Password Hunter
LDAP Password Hunter is a tool which wraps features of getTGT.py (Impacket) and ldapsearch in order to look up for password stored in LDAP database.
LDAP Relay Scan
A tool to check Domain Controllers for LDAP server protections regarding the relay of NTLM authentication.
Active Directory information dumper via LDAP.
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! With this tool you can quickly see if your attack worked and if it changed LDAP attributes of the target object.
A GoLang tool to enumerate and abuse LDAP. Made simple.
Active Directory LDAP Enumerator - Python3 script to quickly get various information from a domain controller through his LDAP service.
Convert HEIC/HEIF image.
Is used to show the current readings of all sensor chips.
Change MAC address of a NIC.
Mattermost is a messaging and collaboration platform. With Mattermost, you can integrate the tools you use every day into one place and never miss a notification or task.
Msfvenom is a command line instance of Metasploit that is used to generate and output all of the various types of shell code that are available in Metasploit.
MySQL is a fast, stable and true multi-user, multi-threaded SQL database server.
Is a high performance graph store with all the features expected of a mature and robust database, like a friendly query language and ACID transactions.
A fast, highly customizable system info script.
#1 Vulnerability Assessment Solution.
OpenSource, self hosted file sharing platform.
Real-time metrics for nginx server (and others)
Nikto is a pluggable web server and CGI scanner written in Perl, using rfp’s LibWhisker to perform fast security or informational checks.
Python script for converting nmap reports into XLS.
Fetch and parse NTLM challenge messages from HTTP and SMB services.
A tool for generating multiple types of NTLMv2 hash theft files.
A fast and flexible NTLM reconnaissance tool without external dependencies. Useful to find out information about NTLM endpoints when working with a large set of potential IP addresses and domains.
scan for NTLM directories.
Obsidian is a powerful and extensible knowledge base that works on top of your local folder of plain text files.
onesixtyone is a simple SNMP scanner which sends SNMP requests for the sysDescr value asynchronously with user-adjustable sending times and then logs the responses which gives the description of the software running on the device.
OpenSSL based Authenticode signing for PE/MSI/Java CAB files.
PAN-OS GP Scanner
Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw function.
PipeWire is a project that aims to greatly improve handling of audio and video under Linux.
Password policy enumerator.
Popsicle is a Linux utility for flashing multiple USB devices in parallel, written in Rust.
A power consumption and power management diagnosis tool.
Printer Exploitation Toolkit.
Pulse Secure Version Scanner
Pulse Secure Version Scanner.
Python is a programming language that lets you work quickly and integrate systems more effectively.
Identify anything. pyWhat easily lets you identify emails, IP addresses, and more. Feed it a .pcap file or some text and it'll tell you what it is!
Search, explore and download Lossless and Hi-Res music from Qobuz. The ultimate Qobuz music downloader.
Encode input data in a QR Code and save as a PNG or EPS image.
A Remote Desktop Protocol client.
Is a Perl script to enumerate security settings of an RDP Service (AKA Terminal Services).
RDPassSpray is a python tool to perform password spray attack in a Microsoft domain environment.
A python script to extract information from a Microsoft Remote Desktop Web Access (RDWA) application.
Set of tools to manage Redis server.
The GTK Remote Desktop Client.
A fast, reliable, and simple file sync and share solution, powered by P2P technology.
RomBuster is a router exploitation tool that allows to disclosure network router admin password.
RSA multi attacks tool : uncipher data from weak public key and try to recover private key Automatic selection of best attack for the given public key.
A tool to abuse Exchange Services.
Retrieves syskey and extract hashes from Windows 2k/NT/XP/Vista SAM.
Lets you background programs and run them when closing terminal.
Conveniently create, copy, store and upload screenshots.
Apple's SuperDrive on Linux.
Synchronised Audio Player for iTunes / AirPlay.
Show mount information for an NFS server.
Simple Net Speed
Simply showing network speed.
FTP-like client to access SMB/CIFS resources on servers.
wget-like utility for download files over SMB.
Samba Share Enumerator.
The snap command lets you install, configure, refresh and remove snaps. Snaps are packages that work across many different Linux distributions, enabling secure delivery and operation of the latest apps and utilities.
Simple Network Management Protocol.
Like to snmpwalk, snmpcheck allows you to enumerate the SNMP devices and places the output in a very human readable friendly format. It could be useful for penetration testing or systems monitoring.
Retrieve a subtree of management values using SNMP GETNEXT requests.
A program for viewing and analysing the contents of music audio files.
Download and install macOS in a VM / macOS on Linux in one command.
Sound I/O Device Chooser
Shows a list of sound output and input devices (similar to gnome sound settings) in the status menu below the volume slider.
DB Browser for SQLite (DB4S) is a high quality, visual, open source tool to create, design, and edit database files compatible with SQLite.
Automatic SQL injection and database takeover tool.
SSH method scanner. Reports password and publickey authentication.
A testing tool that enumerates SSH Ciphers. Using SSHScan, weak ciphers can be easily detected.
SSL Certification Expiration Checker.
stress-ng will stress test a computer system in various selectable ways.
A continuous file synchronization program.
Tabby (formerly Terminus) is a highly configurable terminal emulator, SSH and serial client for Windows, macOS and Linux.
Copy your files faster and more securely.
A typing application to level up your fingers!
Checks the partition and boot sectors of your disks. It is very useful in recovering lost partitions.
Is a free command line tool which checks a server's service on any port for the support of TLS/SSL ciphers, protocols as well as recent cryptographic flaws and more.
A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
Text-mode interface for Git.
Exploits and expands the file names found from the (IIS) tilde enumeration vuln.
Tiling GTK3 terminal emulator for GNOME.
A collection of simplified and community-driven man pages.
Apply power saving settings manually and control ThinkPad battery features.
Scanner to enumerate SSL/TLS encryption protocol support.
Lets you switch easily between several programs in one terminal.
Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.
Unofficial Sonos Controller
Unofficial Sonos Controller for Linux.
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use HTTP basic auth.
Download UUP files from Windows Update servers with ease.
Alternative implementation of the Bitwarden server API written in Rust and compatible with upstream Bitwarden clients*, perfect for self-hosted deployment where running the official resource-heavy service might not be ideal.
VirtualBox is a powerful x86 and AMD64/Intel64 virtualization product for enterprise as well as home use.
Visual Studio Code
Code editing. Redefined.
A glimpse into your computer's temperature, voltage, fan speed, memory usage and CPU load.
Next generation web scanner.
Client for the whois directory service.
The wipe command can be used to securely erase files from magnetic media.
A Linux program to create a Windows USB stick installer from a real Windows DVD or image.
WordPress Vulnerability Scanner.
XSStrike is a Cross Site Scripting detection suite equipped with four hand written parsers, an intelligent payload generator, a powerful fuzzing engine and an incredibly fast crawler.
Secure sharing of secrets, passwords and files.
Download videos from youtube.com or other video platforms.
A youtube-dl fork with additional features and fixes
The #1 security key, offering strong two factor authentication from industry leader Yubico.
Is a UNIX command interpreter (shell) usable as an interactive login shell and as a shell script command processor.