Find, verify, and analyze leaked credentials

🤖 The Modern Port Scanner 🤖

Affordable WiFi hacking platform for testing and learning

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with minimal configuration and with the help of reNgine's correlation, it just makes recon effortless.

A cross platform HTML5 QR code reader. See end to end implementation at: https://scanapp.org

Assembly scanning and decoration extensions for Microsoft.Extensions.DependencyInjection

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.

RTAB-Map library and standalone application

a drop-in replacement for Nmap powered by shodan.io

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.

NIST Certified SCAP 1.2 toolkit

Terminal Network scanner & diagnostic tool with modern TUI

LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/

Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities

massive SQL injection vulnerability scanner

online port scan scraper

AutoPWN Suite is a project for scanning vulnerabilities and exploiting systems automatically.

Kingfisher is a blazingly fast and highly accurate tool for secret detection and live validation across files, Git repos, GitHub, GitLab, Azure Repos, BitBucket, Gitea, AWS S3, Docker images, Jira, Slack, and Confluence

A compat library for Bluetooth Low Energy scanning on Android.

A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.

JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting abilities to discover information about services. Generate report.

Attack Surface Management since before Attack Surface Management was a thing

Scriptable desktop app to correct the perspective of images