Exploitation Tools

997 tools
goodboy-framework
goodboy-framework
Open Source Evasion Exploitation

15-stage Windows malware development & analysis course in Rust. Red team builds it, blue team detects it. All 15 binaries achieved 0/76 on V…
GoodHound
GoodHound
Free Exploitation Post-Exploitation

Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
GooFuzz
GooFuzz
Open Source Exploitation Reconnaissance

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leav…
Google-Hack-Search
Google-Hack-Search
Free Exploitation

Custom Google search engine dedicated to IT security & hacking stuff. Over 240 high-quality sources.
gophish-notifier
gophish-notifier
Open Source Exploitation

Notification webhook for GoPhish
GoPhish-Templates
GoPhish-Templates
Free Exploitation Social Engineering

GoPhish Templates that I have retired and/or templates I've recreated.
gorsh
gorsh
Free Exploitation Post-Exploitation

A toy CTF Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface
gosearch
gosearch
Open Source Exploitation Reconnaissance

🔍 Search anyone's digital footprint across 300+ websites
GoSQLX
GoSQLX
Open Source Exploitation

High-performance SQL parser, formatter, linter & security scanner for Go - 1.5M+ ops/sec, multi-dialect, zero-copy, race-free
goWAPT
goWAPT
Open Source Exploitation Password Attacks

Go Web Application Penetration Test
gpoParser
gpoParser
Free Exploitation Post-Exploitation

gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory enviro…
grafanaExp
grafanaExp
Free Exploitation

A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key / d…
Graphpython
Graphpython
Free Exploitation

Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
graphql-cop
graphql-cop
Open Source Exploitation Web Application

Security Auditor Utility for GraphQL APIs
gtfobins-cli
gtfobins-cli
Open Source Exploitation Post-Exploitation

Search for Unix binaries that can be exploited to bypass system security restrictions.
GTFOBins.github.io
GTFOBins.github.io
Open Source Exploitation Post-Exploitation

GTFOBins is a curated list of Unix-like executables that can be used to bypass local security restrictions in misconfigured systems.
GTFONow
GTFONow
Open Source Exploitation Post-Exploitation

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries using GTFOBins.
h4cker
h4cker
Open Source Exploitation

This repository is maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, dig…
hack-tools
hack-tools
Free Exploitation

    ######################################################################## …
hackable
hackable
Free Exploitation Web Application

A python flask app that is purposefully vulnerable to SQL injection and XSS attacks. To be used for demonstrating attacks
hackEmbedded
hackEmbedded
Open Source Exploitation

This tool is used for encrypt backdoor,shellcode,socks5 proxy generation,Information retrieval and POC arrangement for various architecture …
Hacker-Roadmap
Hacker-Roadmap
Free Exploitation

A detailed plan to achieve proficiency in hacking and penetration testing, with pathways including obtaining a degree in cybersecurity or ea…
hacker101
hacker101
Free Exploitation Web Application

Source code for Hacker101.com - a free online web and mobile security class.
hackerone-reports
hackerone-reports
Free Exploitation Web Application

Top disclosed reports from HackerOne