#framework

Covenant on offsec.tools

Featured

Covenant

Collaborative C2 framework for red teamers.

#api #aws #cloud #framework #google

SharpC2 on offsec.tools

SharpC2

Command and Control Framework written in C#.

#c2c #dotnet #framework

evilgophish on offsec.tools

evilgophish

Combination of evilginx3 and GoPhish.

#emails #framework #phishing

Empire on offsec.tools

Empire

Post-exploitation and adversary emulation framework that is used to aid Red Teams and pentesters.

#c2c #framework #postexploitation

Starkiller on offsec.tools

Starkiller

Starkiller is a frontend for Empire.

#c2c #framework #postexploitation

Caldera on offsec.tools

Caldera

Automated adversary emulation platform.

#c2c #framework #postexploitation

P4wnP1 A.L.O.A. on offsec.tools

P4wnP1 A.L.O.A.

Turn a Rapsberry Pi Zero W into a flexible, low-cost platform for pentesting, red teaming or PE.

#exploits #framework #network #usb

HardHat C2 on offsec.tools

HardHat C2

A cross-platform, collaborative, Command & Control framework.

#c2c #framework

badsecrets on offsec.tools

badsecrets

A library for detecting known secrets across many web frameworks.

#cryptography #django #flask #framework #jwt #laravel #rails #secrets #symfony

The PenTesters Framework on offsec.tools

The PenTesters Framework

The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

#framework #toolkit #vm

Nimbo-C2 on offsec.tools

Nimbo-C2

Yet another (simple and lightweight) C2 framework.

#c2c #framework

Evilginx3 on offsec.tools

Evilginx3

Standalone MITM attack framework allowing for the bypass of 2-factor authentication.

#2fa #framework #mitm #phishing

bbrf on offsec.tools

bbrf

Help you coordinate your reconnaissance workflows across multiple devices.

#framework #organizer #recon

CTFd on offsec.tools

CTFd

A Capture The Flag framework focusing on ease of use and customizability.

#ctf #framework #resources #training

phpsploit on offsec.tools

phpsploit

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor.

#backdoor #c2c #exploits #framework #shell

PoshC2 on offsec.tools

PoshC2

A proxy aware C2 framework used to aid with post-exploitation and lateral movement.

#c2c #framework #postexploitation #privesc #proxy

R3C0Nizer on offsec.tools

R3C0Nizer

The first ever CLI based menu-driven web application B-Tier recon framework.

#framework #recon #toolkit

ScareCrow on offsec.tools

ScareCrow

Payload creation framework designed around EDR bypass.

#api #dll #edr #framework #memory #payloads #permissions #privesc

WiFi-Pumpkin on offsec.tools

WiFi-Pumpkin

Framework for rogue Wi-Fi access point attack.

#framework #mitm #network #sniffer #spoofing #wifi

FiercePhish on offsec.tools

FiercePhish

Full-fledged phishing framework to manage all phishing engagements.

#emails #framework #phishing

Samurai WTF on offsec.tools

Samurai WTF

The best security training environment for developers and AppSec professionals.

#framework #training #vulnerabilities

SimplyEmail on offsec.tools

SimplyEmail

Email recon made fast and easy, with a framework to build on.

#emails #framework #osint #recon

PhoneInfoga on offsec.tools

PhoneInfoga

Information gathering framework for phone numbers.

#framework #osint #phones #recon

Nosql-Exploitation-Framework on offsec.tools

Nosql-Exploitation-Framework

A Python Framework For NoSQL Scanning and Exploitation.

#couchdb #framework #mongodb #nosql #redis

WiFi Exploitation Framework on offsec.tools

WiFi Exploitation Framework

WiFi exploitation framework.

#framework #mitm #wifi

wifiphisher on offsec.tools

wifiphisher

The rogue access point framework.

#framework #phishing #wifi

WebScarab on offsec.tools

WebScarab

Framework for analysing applications that communicate using the HTTP and HTTPS protocols.

#framework #proxy #scanner

jok3r on offsec.tools

jok3r

Network and Web Pentest Automation Framework.

#allinone #cves #fingerprint #framework #organizer #scanner

Canvas on offsec.tools

Canvas

Assessment tool that allows penetration testing and hostile attack simulations.

#allinone #exploits #framework

Legion on offsec.tools

Legion

Aids in discovery, reconnaissance and exploitation of information systems.

#cves #directories #framework #network #reports #scanner #ssl

DroneSploit on offsec.tools

DroneSploit

Drone pentesting framework console.

#drone #exploits #framework #iot

pown.js on offsec.tools

pown.js

Security testing and exploitation toolkit.

#endpoints #framework #recon

LazyHunter on offsec.tools

LazyHunter

A framework that provides a web UI to commonly used Bug Hunting/Pentesting tools.

#framework #organizer #recon

wifipumpkin3 on offsec.tools

wifipumpkin3

Powerful framework for rogue access point attack.

#framework #mitm #network #sniffer #spoofing #wifi

AllAboutBugBounty on offsec.tools

AllAboutBugBounty

Bug Bounty notes gathered from various sources.

#bugbounty #cms #framework #payloads #resources #vulnerabilities

barq on offsec.tools

barq

The AWS Cloud Post Exploitation framework!

#aws #cloud #exploits #framework

RouterSploit on offsec.tools

RouterSploit

Exploitation framework for embedded devices.

#exploits #framework #passwords #payloads #router #scanner

GraphQL Threat Matrix on offsec.tools

GraphQL Threat Matrix

Threat framework to research security gaps in GraphQL implementations.

#framework #graphql

Hackingtool on offsec.tools

Hackingtool

ALL IN ONE Hacking Tool For Hackers.

#allinone #exploits #framework #network #osint #payloads #secrets #sqli #subdomains #wifi #wordlists #xss

Arachni on offsec.tools

Arachni

Web Application Security Scanner Framework.

#framework #monitoring #scanner

Sleepy Puppy on offsec.tools

Sleepy Puppy

Sleepy Puppy XSS Payload Management Framework.

#framework #payloads #vulnerabilities #xss

XSSer on offsec.tools

XSSer

Automatic framework to detect, exploit and report XSS vulnerabilities in web-based applications.

#exploits #framework #scanner #vulnerabilities #xss

RacePWN on offsec.tools

RacePWN

Race Condition framework.

#framework #racecondition

Wappalyzer on offsec.tools

Wappalyzer

Identify technology on websites.

#cms #framework #javascript #technologies

brutesubs on offsec.tools

brutesubs

Automation framework for running multiple open sourced subdomain bruteforcing tools in parallel.

#framework #subdomains

Maryam on offsec.tools

Maryam

Open-source Intelligence Framework.

#framework #osint

The Social-Engineer Toolkit on offsec.tools

The Social-Engineer Toolkit

Open-source penetration testing framework designed for social engineering.

#framework #osint #social-engineering

Maltego on offsec.tools

Maltego

Open source intelligence and forensics application.

#framework #osint

BeEF on offsec.tools

BeEF

The Browser Exploitation Framework is a penetration testing tool that focuses on the web browser.

#browser #exploits #framework #vulnerabilities #xss

Recon-ng on offsec.tools

Recon-ng

OSINT tool aimed at reducing the time spent harvesting information from open sources.

#framework #osint

Rengine on offsec.tools

Rengine

Automated reconnaissance framework for webapps, highly configurable streamlined recon process.

#allinone #framework #ips #osint #scanner #screenshots #subdomains

Metasploit on offsec.tools

Metasploit

The world’s most used penetration testing framework.

#allinone #cves #exploits #framework #network #scanner

w3af on offsec.tools

w3af

Web Application Attack and Audit Framework.

#cves #framework #scanner #vulnerabilities

Osmedeus on offsec.tools

Osmedeus

A Workflow Engine for Offensive Security

#framework #scanner

Jaeles on offsec.tools

Jaeles

The Swiss Army knife for automated Web Application Testing

#framework #scanner

ReconNess on offsec.tools

ReconNess

Continuous recon and pipeline tools setup.