๐ปHacking Tools (Major updates in progress..) โ
Phone Tools โ
- Phoneinfoga - This is the best tool to find out infomation about phone numbers. This tool is available for Windows, Linux and MacOS.
Social Media Tools โ
- Sherlock - Sherlock is a command line tool that can search over 50 social media services.
DDoS / DoS Tools โ
โญ MHDDoS - An excellent DDoS / DoS tool. One of the best ones in my opinion.
LOIC - A decent DoS / DDoS tool that is easy to use and install. Note: This program doesn't have malware, it is just flagged as malware because it's a DDoS / DoS tool.
XOIC - Similar to LOIC.
Slowloris - A good DDoS / DoS tool.
Deobfuscators โ
de4dot - .NET deobfuscator and unpacker.
JS Nice - a web service guessing JS variables names and types based on the model derived from open source.
Network Hacking Tools โ
NetworkMiner - A Network Forensic Analysis Tool (NFAT).
Paros - A Java-based HTTP/HTTPS proxy for assessing web application vulnerability.
pig - A Linux packet crafting tool.
findsubdomains - really fast subdomains scanning service that has much greater opportunities than simple subs finder(works using OSINT).
cirt-fuzzer - A simple TCP/UDP protocol fuzzer.
ASlookup - a useful tool for exploring autonomous systems and all related info (CIDR, ASN, Org...).
ZAP - The Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
mitmsocks4j - Man-in-the-middle SOCKS Proxy for Java.
ssh-mitm - An SSH/SFTP man-in-the-middle tool that logs interactive sessions and passwords.
nmap - Nmap (Network Mapper) is a security scanner.
Aircrack-ng - An 802.11 WEP and WPA-PSK keys cracking program.
Nipe - A script to make Tor Network your default gateway.
Habu - Python Network Hacking Toolkit.
Wifi Jammer - Free program to jam all wifi clients in range.
Firesheep - Free program for HTTP session hijacking attacks.
Scapy - A Python tool and library for low level packet creation and manipulation.
Amass - In-depth subdomain enumeration tool that performs scraping, recursive brute forcing, crawling of web archives, name altering and reverse DNS sweeping.
RustScan - Extremely fast port scanner built with Rust, designed to scan all ports in a couple of seconds and utilizes nmap to perform port enumeration in a fraction of the time.
PETEP - Extensible TCP/UDP proxy with GUI for traffic analysis & modification with SSL/TLS support.
XSStrike - Similar to Burp Suite (which is freemium), can extract session cookies in .json format.
Cryptography / Passwords โ
xortool - A tool to analyze multi-byte XOR cipher.
John the Ripper - A fast password cracker.
Hashcat - Password Cracking based on statistics and industrial standards.
Aircrack - Aircrack is 802.11 WEP and WPA-PSK keys cracking program.
Ciphey - Automated decryption tool using artificial intelligence & natural language processing.
Windows Tools โ
WinPwnage - Bypass UAC in some computers.
GrabAccess - Another great tool to Bypass UAC.
Hiren BootCD - HBCD_PE_x64.iso image to be used with Rufus, can clear or change admin password on Windows, only work if the BIOS password hasn't been already set.
Reverse Engineering โ
Awesome Reverse Engineering - A curated list of awesome reverse engineering resources like IDA Pro, x64dbg, Ghidra, Frida and dnSpy.
Crackmes - A place where you can improve your RE skills.
Tuts 4 You - A forum that gives answers to unpacks and challenges from Crackmes.one.
WebScene - Another forum focused both on Scene groups and reverse engineering, WebScene has archived many releases from late groups such as TSRH.
Hack Testing โ
Hack This Site! - a free, safe and legal training ground for hackers to test and expand their hacking skills
Hack The Box - a free site to perform pentesting in a variety of different systems.
0xf.at - a website without logins or ads where you can solve password-riddles (so called hackits).
fuzzy.land - Website by an Austrian group. Lots of challenges taken from CTFs they participated in.
TryHackMe - Hands-on cyber security training through real-world scenarios.
Vulnhub - Provide materials that allows anyone to gain practical experience in digital security.
Portswigger - Free, online web security training.
Attackdefense - Pentester academy.
Miscellaneous โ
Awesome Hacking - Curated list of a bunch of hacking guides and tools (with a special focus on OSS like Metasploit).
r/hacking wiki - A selection of links organized by reddit. (dread)
Exploit database - An ultimate archive of exploits and vulnerable software.
Hacking Tools - A program that has multiple penetration testing and hacking utilities.
Censys - Port mapping, service enumeration, operating system identification, geolocation, etc..
Maltego - Get DNS, IP and Website Information with this tool.
StormBreaker - Access webcam & microphone & location with Py, JS, PHP.
Hound - A light tool for information gathering and capture exact GPS coordinates.
Emkei's Mailer - Email spoofing, still works if you change the SMTP Server to Sendgrid.
Serveo - Minimalist and free alternative to Ngrok, it can send links to be opened without being on local network.
Parsec - Gain control of other computers, very useful for social engineering.
Everything-About-Captchas - Everything related to captchas, including libraries, solvers and scoring.
ZTE_router_unlock_tool - MAC spoofing on ZTE chinese routers only.
More Hacking tools - A catalog of resources for hackers.
PentestGPT - Artificial Intelligence.