Packages

Information Gathering

  • sqlmap Automatic SQL injection and database takeover tool
  • Striker Recon & Vulnerability Scanning Suite
  • Sublist3r Fast subdomains enumeration tool for penetration testers
  • sherlock Hunt down social media accounts by username across social networks
  • S3Scanner A tool to find open S3 buckets and dump their contents
  • gitGraber Search and find sensitive data in real time for GitHub
  • HydraRecon Simple recon tool

Networking

  • nmap the Network Mapper
  • bettercap Swiss army knife for network attacks and monitoring

Web Apps

  • XSStrike Advanced XSS Detection Suite
  • Photon Incredibly fast crawler designed for OSINT

Passwords

  • cupp Common User Passwords Profiler
  • Cr3d0v3r Your best friend in credential reuse attacks
  • Hash-Buster Why crack hashes when you can bust them?
  • changeme A default credential scanner
  • traitor ⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Obfuscation

  • Cuteit IP obfuscator made to make a malicious ip a bit cuter

Copyright © 2022 fsociety-team. Distributed with the MIT license.