#
brute-force
Here are 551 public repositories matching this topic...
K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)
database
apt
exploit
scanner
hacking
password
poc
brute-force
pentest
bypass
crack
privilege-escalation
0day
getshell
netscan
rar-mysql
-
Updated
Nov 4, 2020 - PowerShell
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
-
Updated
Jul 26, 2020 - Python
大型内网渗透扫描器&Cobalt Strike,Ladon7.2内置94个模块,包含信息收集/存活主机/IP扫描/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、SMBGhost、Weblogic、ActiveMQ、Tomcat、Struts2系列,密码口令爆破(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB、Netbios、LDAP、SmbHash、WmiHash、Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem,Poc/Exploit,支持Cobalt Strike 3.X-4.0
security
tools
hack
exploit
scanner
hacking
password
poc
brute-force
pentest
portscan
security-scanner
exp
security-tools
ladon
ipscanner
getshell
netscan
-
Updated
Nov 4, 2020 - C#
A powerful and useful hacker dictionary builder for a brute-force attack
password-generator
bruteforce
wordlist
brute-force
weak-passwords
dictionary-attack
pentest
wordlist-generator
password-cracker
hackertools
social-engineering-attacks
bruteforce-password-cracker
password-wordlist
hacker-dictionary-builder
-
Updated
Oct 9, 2020 - Python
JWT brute force cracker written in C
-
Updated
Sep 21, 2020 - C
pentest framework
docker
security-audit
exploit
network
proxy
scanner
phishing
hacking
xss
sniffer
packet-analyser
packet-parsing
brute-force
packet-processing
denial-of-service
pentest
fuzzer
packet-generator
spoof
man-in-the-middle
-
Updated
Feb 21, 2019 - Python
Automatically brute force all services running on a target.
-
Updated
Jul 2, 2020 - Shell
wide range mass audit toolkit
-
Updated
Oct 3, 2018 - Python
Enumeration sub domains(枚举子域名)
-
Updated
Mar 26, 2020 - Python
Bruteforce database
-
Updated
Oct 27, 2020
Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .
-
Updated
May 5, 2019 - Python
Modern tactical exploitation toolkit.
-
Updated
May 17, 2019 - Python
The best way to scan for weak ssh passwords on your network
-
Updated
Feb 20, 2020 - Go
nodejs
hashing
api
cli
security
credentials
universal
verification
password
hash-functions
pbkdf2
secure
bcrypt
brute-force
unified
argon
rainbow-table
timing-attacks
credential
upash
-
Updated
Sep 5, 2018 - JavaScript
Steganography brute-force utility to uncover hidden data inside files
-
Updated
Sep 5, 2020 - Python
Python 3.5+ DNS asynchronous brute force utility
python
resolver
dns
security
osint
async
subdomain
enumeration
brute-force
pentesting
recon
red-team
security-tools
bruteforcing
osint-resources
subdomain-takeover
subdomin-enumeration
-
Updated
Apr 15, 2020 - Python
An automated bitcoin wallet collider that brute forces random wallet addresses
python
bitcoin
multiprocessing
address
collider
bruteforce
brute-force-attacks
brute-force
wallet
cracker
btc
cracking
brute
plutus
crack
bruteforce-attacks
bruteforcing
stealing
stealer
wallet-address
-
Updated
May 15, 2020 - Python
Simple HS256 JWT token brute force cracker
nodejs
javascript
jwt
command
command-line
secrets
bruteforce
alphabet
brute-force-attacks
brute-force
jwt-cracker
cracker
-
Updated
Oct 12, 2020 - JavaScript
DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc
brute-force
security-scanner
sensitive-data-security
security-tools
sensitive-data
subdomain-scanner
subdomain-brute
-
Updated
Jul 11, 2018 - Python
locate and attack Lync/Skype for Business
-
Updated
May 13, 2020 - Python
X Brute Forcer Tool
wordpress
drupal
password-generator
perl
magento
password
bruteforce
joomla
brute-force-attacks
brute-force
passwords
opencart
bruteforce-attacks
bruteforce-password-cracker
bruteforcing
password-attack
xbruteforcer
-
Updated
Mar 21, 2020 - Perl
Light NodeJS rate limiting and response delaying using Redis - including Express middleware.
nodejs
light
redis
security
protection
promise
express-middleware
expressjs
authorization
discriminator
ip
rate
brute-force
force
maximum
rate-limiter
expiry
security-tools
limiting
-
Updated
Sep 9, 2020 - JavaScript
Segments intersection detection library
-
Updated
Jun 10, 2020 - JavaScript
PandwaRF: RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or
security
hacking
spectrum-analyzer
bluetooth-low-energy
brute-force
sdr
smartphone
rf-analysis
cc1111
-
Updated
Sep 16, 2020 - Python
macOS FileVault cracking tool
-
Updated
Oct 17, 2018 - Objective-C
An SNMPv3 User Enumerator and Attack tool
-
Updated
Aug 23, 2020 - Ruby
Improve this page
Add a description, image, and links to the brute-force topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the brute-force topic, visit your repo's landing page and select "manage topics."
Hi All,
So I'm trying to use hydra to bruteforce a login on a system that uses custom http headers to receive the username and password. Hydra does not seem to be doing substitution of ^USER^ and ^PASS^ when used as HTTP headers. If I issue issuing a call to hydra like this:
hydra "http-post://0.0.0.0:8000/:H=username\:^USER^:H=password\:^PASS^" -l admin -p adminI see the following r