‎

miscellaneous tools

bing-ip2hosts - enumerate hostnames from bing
datasploit - osint framework to perform various recon techniques
dnsenum - perl script that enumerates dns information
dnsmap - subdomain brute-forcing
dnsrecon - dns enumeration script
dork-cli - command-line google dork tool
dorks - google hack database automation tool
faraday - collaborative penetration test and vulnerability management platform
fierce - dns analysis perl script
foca - fingerprinting organizations with collected archives
hping - network tool able to send custom tcp/ip packets
image-match - quickly search over billions of images
knock - subdomain scan
masscan - fast tcp port scanner
metagoofil - document and metadata reconnaissance (updated version)
onioff - an onion url inspector for inspecting deep web links
osint-spy - performs osint scan on email/domain/ip_address/organization
pagodo - automate google hacking database scrapin
simplyemail - email recon made fast nd easy
surfraw - a fast unix command line interface to a variety of popular www search engines
tekdefense-automater - ip url and md5 osint analysis
thechoice - thechoice is a collection of 14 hacker tools
whatweb - web scanner
xray - a tool for recon, mapping and osint gathering from public networks
zmap - fast single packet network scanner

inctf-framework - attack-defence ctf framework that uses application containers instead of virtual machines
nullctf - a discord bot that provides ctf tools for collaboration in discord servers!
pentest-env - pentest environment deployer (kali linux + targets) using vagrant and chef.

eggshell - ios/macos/linux remote administration tool
metasploit - the world's most used penetration testing framework
parat - python based remote administration tool(rat)
pupy - an opensource, cross-platform, multi function rat
quasarrat - remote administration tool for windows
tgcd - tcp/ip gender changer daemon
thefatrat - an easy tool to generate backdoor for bypass av
veil - tool designed to generate metasploit payloads that bypass common anti-virus solutions
wmimplant - powershell based tool that is designed to act like a rat
ahmyth - android rat

blackeye - the most complete phishing tool, with 32 templates +1 customizable
evilginx2 - standalone man-in-the-middle attack framework
gophish - open-source phishing framework
king-phisher - phishing campaign toolkit
phishery - an ssl enabled basic auth credential harvester
reelphish - a real-time two-factor phishing tool
social-engineer-toolkit - open-source penetration testing framework designed for social engineering
socialfish - an advanced phishing tool

am-i-affected-by-meltdown - meltdown exploit - proof-of-concept
inspectre - examine windows for meltdown and spectre attack
linux-exploit-suggester - linux privilege escalation auditing tool
lynis - auditing tool for unix-based system
nmap - the network mapper
sqlmap - automatic sql injection and database takeover tool
t50 - the fastest network packet injector
unix-privesc-check - shell script to check for simple privilege escalation vectors on unix systems
wapiti - the web-application vulnerability scanner
windows-exploit-suggester - find exploits on windows
mobile security framework (mobsf) - mobile security framework is an automated, all-in-one mobile application (android/ios/windows) pen-testing framework