๐ปHacking Tools (Major updates in progress...) โ
Tools used for hacking. โ
Phone Tools โ
- Phoneinfoga - This is the best tool to find out infomation about phone numbers. This tool is available for Windows, Linux and MacOS.
Social Media Tools โ
- Sherlock - Sherlock is a command line tool that can search over 50 social media services.
DDoS / DoS Tools โ
โญ MHDDoS - An excellent DDoS / DoS tool. One of the best ones in my opinion.
LOIC - A decent DoS / DDoS tool that is easy to use and install. Note: This program doesn't have malware, it is just flagged as malware because it's a DDoS / DoS tool.
XOIC - Similar to LOIC.
Slowloris - A good DDoS / DoS tool.
Other great resources related to hacking and penetration testing โ
Hacking Tools - A program that has multiple penetration testing tools and hacking tools.
Awesome Hacking - A curated list of a bunch of hacking tools and guides.
PentestGPT - Artificial Intelligence for doubts about hacking and pentesting. Alternatively, you can use ChatGPT with the temporary chat enabled to ask the same type of questions.
More Hacking tools - A catalog of resources for hackers.
Deobfuscators โ
de4dot - .NET deobfuscator and unpacker.
JS Nice - a web service guessing JS variables names and types based on the model derived from open source.
Other โ
- Exploit database - An ultimate archive of exploits and vulnerable software.
Network Hacking Tools โ
NetworkMiner - A Network Forensic Analysis Tool (NFAT).
Paros - A Java-based HTTP/HTTPS proxy for assessing web application vulnerability.
pig - A Linux packet crafting tool.
findsubdomains - really fast subdomains scanning service that has much greater opportunities than simple subs finder(works using OSINT).
cirt-fuzzer - A simple TCP/UDP protocol fuzzer.
ASlookup - a useful tool for exploring autonomous systems and all related info (CIDR, ASN, Org...).
ZAP - The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
mitmsocks4j - Man-in-the-middle SOCKS Proxy for Java.
ssh-mitm - An SSH/SFTP man-in-the-middle tool that logs interactive sessions and passwords.
nmap - Nmap (Network Mapper) is a security scanner.
Aircrack-ng - An 802.11 WEP and WPA-PSK keys cracking program.
Nipe - A script to make Tor Network your default gateway.
Habu - Python Network Hacking Toolkit.
Wifi Jammer - Free program to jam all wifi clients in range.
Firesheep - Free program for HTTP session hijacking attacks.
Scapy - A Python tool and library for low level packet creation and manipulation.
Amass - In-depth subdomain enumeration tool that performs scraping, recursive brute forcing, crawling of web archives, name altering and reverse DNS sweeping.
RustScan - Extremely fast port scanner built with Rust, designed to scan all ports in a couple of seconds and utilizes nmap to perform port enumeration in a fraction of the time.
PETEP - Extensible TCP/UDP proxy with GUI for traffic analysis & modification with SSL/TLS support.
Cryptography / Passwords โ
xortool - A tool to analyze multi-byte XOR cipher.
John the Ripper - A fast password cracker.
Aircrack - Aircrack is 802.11 WEP and WPA-PSK keys cracking program.
Ciphey - Automated decryption tool using artificial intelligence & natural language processing.
Windows Tools โ
- WinPwnage - Bypass UAC in some computers.
Software โ
- Kali Linux - Debian-derived Linux distribution designed for digital forensics and penetration testing.
Hack Testing โ
Hack This Site! - a free, safe and legal training ground for hackers to test and expand their hacking skills
Hack The Box - a free site to perform pentesting in a variety of different systems.
0xf.at - a website without logins or ads where you can solve password-riddles (so called hackits).
fuzzy.land - Website by an Austrian group. Lots of challenges taken from CTFs they participated in.
Others - OWASP_Vulnerable_Web_Applications_Directory_Project#tab=On-Line_apps)
TryHackMe - Hands-on cyber security training through real-world scenarios.
Vulnhub - Provide materials that allows anyone to gain practical experience in digital security.
Portswigger - Free, online web security training.
Attackdefense - Pentester academy.