Web path scanner

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

大型内网渗透扫描器&Cobalt Strike，Ladon7.2内置94个模块，包含信息收集/存活主机/IP扫描/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、SMBGhost、Weblogic、ActiveMQ、Tomcat、Struts2系列，密码口令爆破(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB、Netbios、LDAP、SmbHash、WmiHash、Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

A powerful and useful hacker dictionary builder for a brute-force attack

JWT brute force cracker written in C

pentest framework

Automatically brute force all services running on a target.

wide range mass audit toolkit

Enumeration sub domains(枚举子域名)

Bruteforce database

macOS keychain cracking tool

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Modern tactical exploitation toolkit.

The best way to scan for weak ssh passwords on your network

a very fast brute force webshell password tool

🔒Unified API for password hashing algorithms

Steganography brute-force utility to uncover hidden data inside files

Python 3.5+ DNS asynchronous brute force utility

An automated bitcoin wallet collider that brute forces random wallet addresses

Simple HS256 JWT token brute force cracker

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

locate and attack Lync/Skype for Business

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

Ladon Scanner For Golang (Full platform penetration scanner framework)LadonGo一款开源网络渗透扫描器框架，使用它可轻松一键探测C段、B段、A段存活主机、指纹识别、端口扫描、密码爆破、远程执行、高危漏洞检测等。3.0版本包含23个模块功能，高危漏洞检测MS17010、SmbGhost，远程执行SshCmd、WinrmCmd，密码爆破SmbScan、SshScan、FtpScan、MysqlScan、MssqlScan、OracleScan、SqlplusScan、WinrmScan、HttpBasicScan，存活探测/信息收集/指纹识别PingScan、IcmpScan，HttpBanner、HttpTitle、TcpBanner、WeblogicScan、OxidScan，端口扫描PortScan。

Light NodeJS rate limiting and response delaying using Redis - including Express middleware.

macOS FileVault cracking tool

BruteDum - Brute Force attacks SSH, FTP, Telnet, PostgreSQL, RDP, VNC with Hydra, Medusa and Ncrack

PandwaRF: RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or