· 6 years ago · Sep 09, 2019, 07:18 PM
10d1n Web security tool to make fuzzing at HTTP inputs, made in C with libCurl. blackarch-webapp
20trace A hop enumeration tool. blackarch-scanner
33proxy Tiny free proxy server. blackarch-proxy
43proxy-win32 Tiny free proxy server. blackarch-windows
542zip Recursive Zip archive bomb. blackarch-dos
6a2sv Auto Scanning to SSL Vulnerability. blackarch-scanner
7abcd ActionScript ByteCode Disassembler. blackarch-disassembler
8abuse-ssl-bypass-waf Bypassing WAF by abusing SSL/TLS Ciphers. blackarch-webapp
9acccheck A password dictionary attack tool that targets windows authentication via the SMB protocol. blackarch-cracker
10ace Automated Corporate Enumerator. A simple yet powerful VoIP Corporate Directory enumeration tool that mimics the behavior of an IP Phone in order to download the name and extension entries that a given phone can display on its screen interface blackarch-voip
11ad-ldap-enum An LDAP based Active Directory user and group enumeration tool. blackarch-recon
12adfind Simple admin panel finder for php,js,cgi,asp and aspx admin panels. blackarch-webapp
13admid-pack ADM DNS spoofing tools - Uses a variety of active and passive methods to spoof DNS packets. Very powerful. blackarch-spoof
14adminpagefinder This python script looks for a large amount of possible administrative interfaces on a given site. blackarch-webapp
15admsnmp ADM SNMP audit scanner. blackarch-scanner
16aesfix A tool to find AES key in RAM. blackarch-cracker
17aeskeyfind A tool to find AES key in RAM. blackarch-cracker
18aespipe Reads data from stdin and outputs encrypted or decrypted results to stdout. blackarch-crypto
19aesshell A backconnect shell for Windows and Unix written in python and uses AES in CBC mode in conjunction with HMAC-SHA256 for secure transport. blackarch-backdoor
20afflib An extensible open format for the storage of disk images and related forensic information. blackarch-forensic
21afl Security-oriented fuzzer using compile-time instrumentation and genetic algorithms blackarch-fuzzer
22afpfs-ng A client for the Apple Filing Protocol (AFP) blackarch-networking
23agafi A gadget finder and a ROP-Chainer tool for x86 platforms. blackarch-windows
24against A very fast ssh attacking script which includes a multithreaded port scanning module (tcp connect) for discovering possible targets and a multithreaded brute-forcing module which attacks parallel all discovered hosts or given ip addresses from a list. blackarch-cracker
25aggroargs Bruteforce commandline buffer overflows, linux, aggressive arguments. blackarch-exploitation
26aiengine A packet inspection engine with capabilities of learning without any human intervention. blackarch-networking
27aimage A program to create aff-images. blackarch-forensic
28air A GUI front-end to dd/dc3dd designed for easily creating forensic images. blackarch-forensic
29aircrack-ng Key cracker for the 802.11 WEP and WPA-PSK protocols blackarch-wireless
30airflood A modification of aireplay that allows for a DoS of the AP. This program fills the table of clients of the AP with random MACs doing impossible new connections. [Tool in Spanish] blackarch-wireless
31airgeddon Multi-use bash script for Linux systems to audit wireless networks. blackarch-wireless
32airgraph-ng Graphing tool for the aircrack suite. blackarch-misc
33airopy Get (wireless) clients and access points. blackarch-wireless
34airoscript A script to simplify the use of aircrack-ng tools. blackarch-wireless
35airpwn A tool for generic packet injection on an 802.11 network. blackarch-wireless
36ajpfuzzer A command-line fuzzer for the Apache JServ Protocol (ajp13). blackarch-fuzzer
37albatar A SQLi exploitation framework in Python. blackarch-webapp
38allthevhosts A vhost discovery tool that scrapes various web applications. blackarch-scanner
39altdns Generates permutations, alterations and mutations of subdomains and then resolves them. blackarch-recon
40amass In-depth subdomain enumeration written in Go. blackarch-scanner
41amber Reflective PE packer. blackarch-binary
42amoco Yet another tool for analysing binaries. blackarch-binary
43analyzepesig Analyze digital signature of PE file. blackarch-windows
44androbugs An efficient Android vulnerability scanner that helps developers or hackers find potential security vulnerabilities in Android applications. blackarch-mobile
45androguard Reverse engineering, Malware and goodware analysis of Android applications and more. blackarch-binary
46androick A python tool to help in forensics analysis on android. blackarch-mobile
47android-apktool A tool for reverse engineering Android apk files. blackarch-reversing
48android-ndk Android C/C++ developer kit. blackarch-mobile
49android-sdk Google Android SDK blackarch-mobile
50android-udev-rules Android udev rules. blackarch-mobile
51androidpincrack Bruteforce the Android Passcode given the hash and salt. blackarch-mobile
52androidsniffer A perl script that lets you search for 3rd party passwords, dump the call log, dump contacts, dump wireless configuration, and more. blackarch-mobile
53androwarn Yet another static code analyzer for malicious Android applications. blackarch-mobile
54angr The next-generation binary analysis platform from UC Santa Barbaras Seclab. blackarch-binary
55angr-management This is the GUI for angr. blackarch-binary
56angr-py2 The next-generation binary analysis platform from UC Santa Barbaras Seclab. blackarch-binary
57angrop A rop gadget finder and chain builder. blackarch-exploitation
58anontwi A free software python client designed to navigate anonymously on social networks. It supports Identi.ca and Twitter.com. blackarch-social
59anti-xss A XSS vulnerability scanner. blackarch-webapp
60antiransom A tool capable of detect and stop attacks of Ransomware using honeypots. blackarch-windows
61apache-users This perl script will enumerate the usernames on a unix system that use the apache module UserDir. blackarch-scanner
62apacket Sniffer syn and backscatter packets. blackarch-networking
63aphopper A program that automatically hops between access points of different wireless networks. blackarch-wireless
64api-dnsdumpster Unofficial Python API for http://dnsdumpster.com/. blackarch-recon
65apkid Android Application Identifier for Packers, Protectors, Obfuscators and Oddities. blackarch-mobile
66apkstat Automated Information Retrieval From APKs For Initial Analysis. blackarch-mobile
67apkstudio An IDE for decompiling/editing & then recompiling of android application binaries. blackarch-reversing
68apnbf A small python script designed for enumerating valid APNs (Access Point Name) on a GTP-C speaking device. blackarch-wireless
69appmon A runtime security testing & profiling framework for native apps on macOS, iOS & android and it is built using Frida. blackarch-mobile
70apt2 Automated penetration toolkit. blackarch-automation
71aquatone A Tool for Domain Flyovers. blackarch-recon
72arachni A feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications. blackarch-webapp
73aranea A fast and clean dns spoofing tool. blackarch-spoof
74archivebox The open source self-hosted web archive. Takes browser history/bookmarks/Pocket/Pinboard/etc., saves HTML, JS, PDFs, media, and more. blackarch-misc
75arduino Arduino prototyping platform SDK blackarch-hardware
76argon2 A password-hashing function (reference C implementation) blackarch-crypto
77argus Network monitoring tool with flow control. blackarch-networking
78argus-clients Network monitoring client for Argus. blackarch-networking
79arjun HTTP parameter discovery suite. blackarch-webapp
80armitage A graphical cyber attack management tool for Metasploit. blackarch-exploitation
81armor A simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners. blackarch-exploitation
82armscgen ARM Shellcode Generator (Mostly Thumb Mode). blackarch-exploitation
83arp-scan A tool that uses ARP to discover and fingerprint IP hosts on the local network blackarch-networking
84arpalert Monitor ARP changes in ethernet networks. blackarch-networking
85arpoison The UNIX arp cache update utility blackarch-exploitation
86arpon A portable handler daemon that make ARP protocol secure in order to avoid the Man In The Middle (MITM) attack through ARP Spoofing, ARP Cache Poisoning or ARP Poison Routing (APR) attacks. blackarch-defensive
87arpstraw Arp spoof detection tool. blackarch-defensive
88arptools A simple tool about ARP broadcast, ARP attack, and data transmission. blackarch-networking
89arpwner GUI-based python tool for arp posioning and dns poisoning attacks. blackarch-networking
90artillery A combination of a honeypot, file-system monitoring, system hardening, and overall health of a server to create a comprehensive way to secure a system. blackarch-defensive
91artlas Apache Real Time Logs Analyzer System. blackarch-defensive
92arybo Manipulation, canonicalization and identification of mixed boolean-arithmetic symbolic expressions. blackarch-misc
93asleap Actively recover LEAP/PPTP passwords. blackarch-cracker
94asp-audit An ASP fingerprinting tool and vulnerability scanner. blackarch-fingerprint
95assetfinder Find domains and subdomains potentially related to a given domain. blackarch-scanner
96astra Automated Security Testing For REST API's. blackarch-webapp
97atear Wireless Hacking, WiFi Security, Vulnerability Analyzer, Pentestration. blackarch-wireless
98atftp Client/server implementation of the TFTP protocol that implements RFCs 1350, 2090, 2347, 2348, and 2349 blackarch-networking
99athena-ssl-scanner A SSL cipher scanner that checks all cipher codes. It can identify about 150 different ciphers. blackarch-scanner
100atscan Server, Site and Dork Scanner. blackarch-scanner
101atstaketools This is an archive of various @Stake tools that help perform vulnerability scanning and analysis, information gathering, password auditing, and forensics. blackarch-windows
102auto-xor-decryptor Automatic XOR decryptor tool. blackarch-crypto
103automato Should help with automating some of the user-focused enumeration tasks during an internal penetration test. blackarch-automation
104autonessus This script communicates with the Nessus API in an attempt to help with automating scans. blackarch-automation
105autonse Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScanner. blackarch-automation
106autopsy The forensic browser. A GUI for the Sleuth Kit. blackarch-forensic
107autopwn Specify targets and run sets of tools against them. blackarch-automation
108autorecon A multi-threaded network reconnaissance tool which performs automated enumeration of services. blackarch-automation
109autosint Tool to automate common osint tasks. blackarch-recon
110autosploit Automate the exploitation of remote hosts. blackarch-exploitation
111autovpn Easily connect to a VPN in a country of your choice. blackarch-automation
112avaloniailspy .NET Decompiler (port of ILSpy) blackarch-decompiler
113avet AntiVirus Evasion Tool blackarch-binary
114avml A portable volatile memory acquisition tool for Linux. blackarch-misc
115aws-extender-cli Script to test S3 buckets as well as Google Storage buckets and Azure Storage containers for common misconfiguration issues. blackarch-scanner
116aws-inventory Discover resources created in an AWS account. blackarch-recon
117awsbucketdump A tool to quickly enumerate AWS S3 buckets to look for loot. blackarch-automation
118azazel A userland rootkit based off of the original LD_PRELOAD technique from Jynx rootkit. blackarch-backdoor
119aztarna A footprinting tool for ROS and SROS systems. blackarch-recon
120backcookie Small backdoor using cookie. blackarch-backdoor
121backdoor-apk Shell script that simplifies the process of adding a backdoor to any Android APK file blackarch-mobile
122backdoor-factory Patch win32/64 binaries with shellcode. blackarch-backdoor
123backdoorme A powerful utility capable of backdooring Unix machines with a slew of backdoors. blackarch-backdoor
124backdoorppt Transform your payload.exe into one fake word doc (.ppt). blackarch-backdoor
125backfuzz A network protocol fuzzing toolkit. blackarch-fuzzer
126backhack Tool to perform Android app analysis by backing up and extracting apps, allowing you to analyze and modify file system contents for apps. blackarch-mobile
127backorifice A remote administration system which allows a user to control a computer across a tcpip connection using a simple console or GUI application. blackarch-windows
128bad-pdf Steal NTLM Hashes with Bad-PDF. blackarch-exploitation
129badkarma Advanced network reconnaissance toolkit. blackarch-recon
130badministration A tool which interfaces with management or administration applications from an offensive standpoint. blackarch-webapp
131balbuzard A package of malware analysis tools in python to extract patterns of interest from suspicious files (IP addresses, domain names, known file headers, interesting strings, etc). blackarch-malware
132bamf-framework A modular framework designed to be a platform to launch attacks against botnets. blackarch-malware
133bandicoot A toolbox to analyze mobile phone metadata. blackarch-mobile
134barf A multiplatform open source Binary Analysis and Reverse engineering Framework. blackarch-binary
135barmie Java RMI enumeration and attack tool. blackarch-scanner
136base64dump Extract and decode base64 strings from files. blackarch-misc
137basedomainname Tool that can extract TLD (Top Level Domain), domain extensions (Second Level Domain + TLD), domain name, and hostname from fully qualified domain names. blackarch-recon
138bashfuscator Fully configurable and extendable Bash obfuscation framework. blackarch-automation
139batctl B.A.T.M.A.N. advanced control and management tool blackarch-wireless
140batman-adv Batman kernel module, (included upstream since .38) blackarch-wireless
141batman-alfred Almighty Lightweight Fact Remote Exchange Daemon blackarch-wireless
142bbqsql SQL injection exploit tool. blackarch-webapp
143bbscan A tiny Batch web vulnerability Scanner. blackarch-webapp
144bdfproxy Patch Binaries via MITM: BackdoorFactory + mitmProxy blackarch-proxy
145bdlogparser This is a utility to parse a Bit Defender log file, in order to sort them into a malware archive for easier maintanence of your malware collection. blackarch-malware
146bed Collection of scripts to test for buffer overflows, format string vulnerabilities. blackarch-exploitation
147beebug A tool for checking exploitability. blackarch-decompiler
148beef The Browser Exploitation Framework that focuses on the web browser. blackarch-exploitation
149beeswarm Honeypot deployment made easy http://www.beeswarm-ids.org/ blackarch-honeypot
150beholder A wireless intrusion detection tool that looks for anomalies in a wifi environment. blackarch-wireless
151belati The Traditional Swiss Army Knife for OSINT. blackarch-scanner
152beleth A Multi-threaded Dictionary based SSH cracker. blackarch-cracker
153bettercap Swiss army knife for network attacks and monitoring blackarch-sniffer
154bettercap-ui Official Bettercap's Web UI. blackarch-misc
155bfac An automated tool that checks for backup artifacts that may disclose the web-application's source code. blackarch-recon
156bfbtester Performs checks of single and multiple argument command line overflows and environment variable overflows blackarch-exploitation
157bfuzz Input based fuzzer tool for browsers. blackarch-fuzzer
158bgp-md5crack RFC2385 password cracker blackarch-cracker
159bgrep Binary grep. blackarch-binary
160billcipher Information Gathering tool for a Website or IP address. blackarch-recon
161binaryninja-demo A new kind of reversing platform (demo version). blackarch-reversing
162binaryninja-python Binary Ninja prototype written in Python. blackarch-binary
163bind-tools The ISC DNS tools blackarch-networking
164bindead A static analysis tool for binaries blackarch-binary
165bindiff A comparison tool for binary files, that assists vulnerability researchers and engineers to quickly find differences and similarities in disassembled code. blackarch-binary
166binex Format String exploit building tool. blackarch-exploitation
167binflow POSIX function tracing. Much better and faster than ftrace. blackarch-binary
168bing-ip2hosts Enumerates all hostnames which Bing has indexed for a specific IP address. blackarch-recon
169bing-lfi-rfi Python script for searching Bing for sites that may have local and remote file inclusion vulnerabilities. blackarch-webapp
170bingoo A Linux bash based Bing and Google Dorking Tool. blackarch-scanner
171binnavi A binary analysis IDE that allows to inspect, navigate, edit and annotate control flow graphs and call graphs of disassembled code. blackarch-disassembler
172binproxy A proxy for arbitrary TCP connections. blackarch-proxy
173binwalk A tool for searching a given binary image for embedded files blackarch-disassembler
174binwally Binary and Directory tree comparison tool using the Fuzzy Hashing concept (ssdeep). blackarch-binary
175bios_memimage A tool to dump RAM contents to disk (aka cold boot attack). blackarch-cracker
176birp A tool that will assist in the security assessment of mainframe applications served over TN3270. blackarch-scanner
177bitdump A tool to extract database data from a blind SQL injection vulnerability. blackarch-exploitation
178bittwist A simple yet powerful libpcap-based Ethernet packet generator. It is designed to complement tcpdump, which by itself has done a great job at capturing network traffic. blackarch-sniffer
179bkhive Program for dumping the syskey bootkey from a Windows NT/2K/XP system hive. blackarch-cracker
180blackbox-scanner Dork scanner & bruteforcing & hash cracker with blackbox framework. blackarch-scanner
181blackeye The most complete Phishing Tool, with 32 templates +1 customizable. blackarch-social
182blackhash Creates a filter from system hashes blackarch-cracker
183blacknurse A low bandwidth ICMP attack that is capable of doing denial of service to well known firewalls. blackarch-dos
184bleah A BLE scanner for "smart" devices hacking. blackarch-scanner
185bletchley A collection of practical application cryptanalysis tools. blackarch-crypto
186blind-sql-bitshifting A blind SQL injection module that uses bitshfting to calculate characters. blackarch-exploitation
187blindelephant A web application fingerprinter. Attempts to discover the version of a (known) web application by comparing static files at known locations blackarch-fingerprint
188blindsql Set of bash scripts for blind SQL injection attacks. blackarch-database
189blindy Simple script to automate brutforcing blind sql injection vulnerabilities. blackarch-scanner
190blisqy Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB). blackarch-webapp
191bloodhound Six Degrees of Domain Admin blackarch-recon
192bluebox-ng A GPL VoIP/UC vulnerability scanner. blackarch-voip
193bluebugger An implementation of the bluebug technique which was discovered by Martin Herfurt. blackarch-bluetooth
194bluediving A Bluetooth penetration testing suite. blackarch-bluetooth
195bluelog A Bluetooth scanner and sniffer written to do a single task, log devices that are in discoverable mode. blackarch-bluetooth
196bluepot A Bluetooth Honeypot written in Java, it runs on Linux blackarch-bluetooth
197blueranger A simple Bash script which uses Link Quality to locate Bluetooth device radios. blackarch-automation
198bluescan A Bluetooth Device Scanner. blackarch-bluetooth
199bluesnarfer A bluetooth attacking tool. blackarch-bluetooth
200bluphish Bluetooth device and service discovery tool that can be used for security assessment and penetration testing. blackarch-bluetooth
201bluto Recon, Subdomain Bruting, Zone Transfers. blackarch-scanner
202bmap-tools Tool for copying largely sparse files using information from a block map file. blackarch-forensic
203bob-the-butcher A distributed password cracker package. blackarch-cracker
204bof-detector A simple detector of BOF vulnerabilities by source-code-level check. blackarch-code-audit
205bokken GUI for radare2 and pyew. blackarch-misc
206bonesi The DDoS Botnet Simulator. blackarch-dos
207boopsuite A Suite of Tools written in Python for wireless auditing and security testing. blackarch-wireless
208bopscrk Tool to generate smart wordlists, eg. based on lyrics. blackarch-automation
209bowcaster A framework intended to aid those developing exploits. blackarch-exploitation
210box-js A tool for studying JavaScript malware. blackarch-malware
211braa A mass snmp scanner blackarch-scanner
212braces A Bluetooth Tracking Utility. blackarch-bluetooth
213brakeman A static analysis security vulnerability scanner for Ruby on Rails applications. blackarch-code-audit
214bro A powerful network analysis framework that is much different from the typical IDS you may know. blackarch-networking
215bro-aux Handy auxiliary programs related to the use of the Bro Network Security Monitor (https://www.bro.org/). blackarch-networking
216brosec An interactive reference tool to help security professionals utilize useful payloads and commands. blackarch-exploitation
217browselist Retrieves the browse list ; the output list contains computer names, and the roles they play in the network. blackarch-windows
218browser-fuzzer Browser Fuzzer 3 blackarch-fuzzer
219brut3k1t Brute-force attack that supports multiple protocols and services. blackarch-cracker
220brute-force Brute-Force attack tool for Gmail Hotmail Twitter Facebook Netflix. blackarch-cracker
221brute12 A tool designed for auditing the cryptography container security in PKCS12 format. blackarch-windows
222bruteforce-luks Try to find the password of a LUKS encrypted volume. blackarch-cracker
223bruteforce-salted-openssl Try to find the password of a file that was encrypted with the 'openssl' command. blackarch-cracker
224bruteforce-wallet Try to find the password of an encrypted Peercoin (or Bitcoin,Litecoin, etc...) wallet file. blackarch-cracker
225brutemap Penetration testing tool that automates testing accounts to the site's login page. blackarch-webapp
226brutespray Brute-Forcing from Nmap output - Automatically attempts default creds on found services. blackarch-automation
227brutessh A simple sshd password bruteforcer using a wordlist, it's very fast for internal networks. It's multithreads. blackarch-cracker
228brutex Automatically brute force all services running on a target. blackarch-automation
229brutexss Cross-Site Scripting Bruteforcer. blackarch-webapp
230brutus One of the fastest, most flexible remote password crackers you can get your hands on. blackarch-windows
231bsdiff bsdiff and bspatch are tools for building and applying patches to binary files. blackarch-reversing
232bsqlbf Blind SQL Injection Brute Forcer. blackarch-webapp
233bsqlinjector Blind SQL injection exploitation tool written in ruby. blackarch-webapp
234bss Bluetooth stack smasher / fuzzer blackarch-bluetooth
235bt_audit Bluetooth audit blackarch-bluetooth
236btcrack The world's first Bluetooth Pass phrase (PIN) bruteforce tool. Bruteforces the Passkey and the Link key from captured Pairing exchanges. blackarch-bluetooth
237btlejack Bluetooth Low Energy Swiss-army knife. blackarch-bluetooth
238btproxy-mitm Man in the Middle analysis tool for Bluetooth. blackarch-bluetooth
239btscanner Bluetooth device scanner. blackarch-bluetooth
240bulk-extractor Bulk Email and URL extraction tool. blackarch-forensic
241bully Retrieve WPA/WPA2 passphrase from a WPS enabled access point blackarch-wireless
242bunny A closed loop, high-performance, general purpose protocol-blind fuzzer for C programs. blackarch-fuzzer
243burpsuite An integrated platform for attacking web applications (free edition). blackarch-fuzzer
244buster Find emails of a person and return info associated with them. blackarch-social
245buttinsky Provide an open source framework for automated botnet monitoring. blackarch-networking
246bvi A display-oriented editor for binary files operate like "vi" editor. blackarch-binary
247byepass Automates password cracking tasks using optimized dictionaries and mangling rules. blackarch-automation
248bypass-firewall-dns-history Firewall bypass script based on DNS history records. blackarch-networking
249bytecode-viewer A Java 8/Android APK Reverse Engineering Suite. blackarch-binary
250c5scan Vulnerability scanner and information gatherer for the Concrete5 CMS. blackarch-webapp
251cachedump A tool that demonstrates how to recover cache entry information: username and hashed password (called MSCASH). blackarch-windows
252cadaver Command-line WebDAV client for Unix blackarch-networking
253cameradar Hacks its way into RTSP videosurveillance cameras. blackarch-scanner
254camscan A tool which will analyze the CAM table of Cisco switches to look for anamolies. blackarch-scanner
255can-utils Linux-CAN / SocketCAN user space applications. blackarch-automobile
256canalyzat0r Security analysis toolkit for proprietary car protocols. blackarch-automobile
257canari Maltego rapid transform development and execution framework. blackarch-forensic
258cangibrina Dashboard Finder. blackarch-scanner
259cansina A python-based Web Content Discovery Tool. blackarch-webapp
260cantoolz Framework for black-box CAN network analysis. blackarch-automobile
261capfuzz Capture, fuzz and intercept web traffic. blackarch-sniffer
262capstone Lightweight multi-platform, multi-architecture disassembly framework blackarch-reversing
263captipper Malicious HTTP traffic explorer tool. blackarch-forensic
264cardpwn OSINT Tool to find Breached Credit Cards Information. blackarch-social
265carwhisperer Intends to sensibilise manufacturers of carkits and other Bluetooth appliances without display and keyboard for the possible security threat evolving from the use of standard passkeys. blackarch-bluetooth
266casefile The little brother to Maltego without transforms, but combines graph and link analysis to examine links between manually added data to mind map your information blackarch-forensic
267catnthecanary An application to query the canary.pw data set for leaked data. blackarch-recon
268catphish For phishing and corporate espionage. blackarch-social
269cdpsnarf Cisco discovery protocol sniffer. blackarch-sniffer
270cecster A tool to perform security testing against the HDMI CEC (Consumer Electronics Control) and HEC (HDMI Ethernet Channel) protocols. blackarch-scanner
271centry Cold boot & DMA protection blackarch-misc
272certgraph Crawl the graph of certificate Alternate Names. blackarch-recon
273cewl A custom word list generator. blackarch-automation
274cflow A C program flow analyzer. blackarch-code-audit
275cfr Another Java decompiler. blackarch-decompiler
276chameleon A tool for evading Proxy categorisation. blackarch-networking
277chameleonmini Official repository of ChameleonMini, a freely programmable, portable tool for NFC security analysis that can emulate and clone contactless cards, read RFID tags and sniff/log RF data. blackarch-social
278changeme A default credential scanner. blackarch-scanner
279chankro Tool that generates a PHP capable of run a custom binary (like a meterpreter) or a bash script (p.e. reverse shell) bypassing disable_functions & open_basedir). blackarch-webapp
280chaosmap An information gathering tool and dns / whois / web server scanner blackarch-forensic
281chaosreader A freeware tool to trace tcp, udp etc. sessions and fetch application data from snoop or tcpdump logs. blackarch-networking
282chapcrack A tool for parsing and decrypting MS-CHAPv2 network handshakes. blackarch-cracker
283cheat-sh The only cheat sheet you need. blackarch-automation
284check-weak-dh-ssh Debian OpenSSL weak client Diffie-Hellman Exchange checker. blackarch-scanner
285checkiban Checks the validity of an International Bank Account Number (IBAN). blackarch-misc
286checkpwd Oracle Password Checker (Cracker). blackarch-cracker
287checksec Tool designed to test which standard Linux OS and PaX security features are being used blackarch-automation
288chiasm-shell Python-based interactive assembler/disassembler CLI, powered byKeystone/Capstone. blackarch-disassembler
289chipsec Platform Security Assessment Framework. blackarch-hardware
290chiron An all-in-one IPv6 Penetration Testing Framework. blackarch-scanner
291chisel A fast TCP tunnel over HTTP. blackarch-tunnel
292chkrootkit Checks for rootkits on a system blackarch-defensive
293chntpw Offline NT Password Editor - reset passwords in a Windows NT SAM user database file blackarch-forensic
294chopshop Protocol Analysis/Decoder Framework. blackarch-networking
295choronzon An evolutionary knowledge-based fuzzer. blackarch-fuzzer
296chownat Allows two peers behind two separate NATs with no port forwarding and no DMZ setup on their routers to directly communicate with each other blackarch-tunnel
297chrome-decode Chrome web browser decoder tool that demonstrates recovering passwords. blackarch-windows
298chromefreak A Cross-Platform Forensic Framework for Google Chrome blackarch-forensic
299chromensics A Google chrome forensics tool. blackarch-windows
300chw00t Unices chroot breaking tool. blackarch-exploitation
301cidr2range Script for listing the IP addresses contained in a CIDR netblock. blackarch-networking
302cintruder An automatic pentesting tool to bypass captchas. blackarch-cracker
303cipherscan A very simple way to find out which SSL ciphersuites are supported by a target. blackarch-scanner
304ciphertest A better SSL cipher checker using gnutls. blackarch-crypto
305ciphr A CLI tool for encoding, decoding, encryption, decryption, and hashing streams of data. blackarch-crypto
306cirt-fuzzer A simple TCP/UDP protocol fuzzer. blackarch-fuzzer
307cisco-auditing-tool Perl script which scans cisco routers for common vulnerabilities. Checks for default passwords, easily guessable community names, and the IOS history bug. Includes support for plugins and scanning multiple hosts. blackarch-cracker
308cisco-global-exploiter A perl script that targets multiple vulnerabilities in the Cisco Internetwork Operating System (IOS) and Catalyst products. blackarch-exploitation
309cisco-ocs Cisco Router Default Password Scanner. blackarch-cracker
310cisco-router-config Tools to copy and merge Cisco Routers Configuration. blackarch-misc
311cisco-scanner Multithreaded Cisco HTTP vulnerability scanner. Tested on Linux, OpenBSD and Solaris. blackarch-cracker
312cisco-snmp-enumeration Automated Cisco SNMP Enumeration, Brute Force, Configuration Download and Password Cracking. blackarch-automation
313cisco-snmp-slap IP address spoofing tool in order to bypass an ACL protecting an SNMP service on Cisco IOS devices. blackarch-spoof
314cisco-torch Cisco Torch mass scanning, fingerprinting, and exploitation tool. blackarch-exploitation
315cisco5crack Crypt and decrypt the cisco enable 5 passwords. blackarch-cracker
316cisco7crack Crypt and decrypt the cisco enable 7 passwords. blackarch-cracker
317ciscos Scans class A, B, and C networks for cisco routers which have telnet open and have not changed the default password from cisco. blackarch-scanner
318cjexploiter Drag and Drop ClickJacking exploit development assistance tool. blackarch-webapp
319clair Vulnerability Static Analysis for Containers. blackarch-scanner
320clamscanlogparser This is a utility to parse a Clam Anti Virus log file, in order to sort them into a malware archive for easier maintanence of your malware collection. blackarch-malware
321climber Check UNIX/Linux systems for privilege escalation. blackarch-scanner
322cloakify Data Exfiltration In Plain Sight; Evade DLP/MLS Devices; Social Engineering of Analysts; Evade AV Detection. blackarch-misc
323cloud-buster A tool that checks Cloudflare enabled sites for origin IP leaks. blackarch-recon
324cloudfail Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network. blackarch-recon
325cloudflare-enum Cloudflare DNS Enumeration Tool for Pentesters. blackarch-scanner
326cloudget Python script to bypass cloudflare from command line. Built upon cfscrape module. blackarch-webapp
327cloudmare A simple tool to find origin servers of websites protected by CloudFlare with a misconfiguration DNS. blackarch-recon
328cloudsploit AWS security scanning checks. blackarch-scanner
329clusterd Automates the fingerprinting, reconnaissance, and exploitation phases of an application server attack. blackarch-automation
330cminer A tool for enumerating the code caves in PE files. blackarch-binary
331cmospwd Decrypts password stored in CMOS used to access BIOS setup. blackarch-cracker
332cms-explorer Designed to reveal the specific modules, plugins, components and themes that various cms driven websites are running. blackarch-fingerprint
333cms-few Joomla, Mambo, PHP-Nuke, and XOOPS CMS SQL injection vulnerability scanning tool written in Python. blackarch-webapp
334cmseek CMS (Content Management Systems) Detection and Exploitation suite. blackarch-webapp
335cmsfuzz Fuzzer for wordpress, cold fusion, drupal, joomla, and phpnuke. blackarch-webapp
336cmsmap A python open source Content Management System scanner that automates the process of detecting security flaws of the most popular CMSs. blackarch-scanner
337cmsscanner CMS Scanner Framework. blackarch-webapp
338cnamulator A phone CNAM lookup utility using the OpenCNAM API. blackarch-mobile
339cntlm An NTLM, NTLM2SR, and NTLMv2 authenticating HTTP proxy. blackarch-proxy
340codetective A tool to determine the crypto/encoding algorithm used according to traces of its representation. blackarch-crypto
341comission WhiteBox CMS analysis. blackarch-webapp
342commix Automated All-in-One OS Command Injection and Exploitation Tool. blackarch-webapp
343commonspeak Leverages publicly available datasets from Google BigQuery to generate wordlists. blackarch-automation
344complemento A collection of tools for pentester: LetDown is a powerful tcp flooder ReverseRaider is a domain scanner that use wordlist scanning or reverse resolution scanning Httsquash is an http server scanner, banner grabber and data retriever blackarch-fingerprint
345configpush This is a tool to span /8-sized networks quickly sending snmpset requests with default or otherwise specified community string to Cisco devices. blackarch-scanner
346conpot ICS honeypot with the goal to collect intelligence about the motives and methods of adversaries targeting industrial control systems url="http://conpot.org" blackarch-honeypot
347conscan A blackbox vulnerability scanner for the Concre5 CMS. blackarch-fuzzer
348cookie-cadger An auditing tool for Wi-Fi or wired Ethernet connections. blackarch-fuzzer
349corkscrew A tool for tunneling SSH through HTTP proxies blackarch-tunnel
350corscanner Fast CORS misconfiguration vulnerabilities scanner. blackarch-webapp
351corstest A simple CORS misconfigurations checker. blackarch-scanner
352cottontail Capture all RabbitMQ messages being sent through a broker. blackarch-sniffer
353cowpatty Wireless WPA/WPA2 PSK handshake cracking utility blackarch-wireless
354cpfinder Simple script that looks for administrative web interfaces. blackarch-scanner
355cppcheck A tool for static C/C++ code analysis blackarch-code-audit
356cpptest A portable and powerful, yet simple, unit testing framework for handling automated tests in C++. blackarch-code-audit
357cr3dov3r Search for public leaks for email addresses + check creds against 16 websites. blackarch-recon
358crackhor A Password cracking utility. blackarch-cracker
359crackle Crack and decrypt BLE encryption blackarch-cracker
360crackmapexec A swiss army knife for pentesting Windows/Active Directory environments. blackarch-scanner
361crackq Hashcrack.org GPU-accelerated password cracker. blackarch-cracker
362crackserver An XMLRPC server for password cracking. blackarch-cracker
363crawlic Web recon tool (find temporary files, parse robots.txt, search folders, google dorks and search domains hosted on same server). blackarch-webapp
364creak Poison, reset, spoof, redirect MITM script. blackarch-networking
365create_ap A shell script to create a NATed/Bridged Software Access Point blackarch-wireless
366creddump A python tool to extract various credentials and secrets from Windows registry hives. blackarch-cracker
367credmap The Credential mapper - Tool that was created to bring awareness to the dangers of credential reuse. blackarch-misc
368creds Harvest FTP/POP/IMAP/HTTP/IRC credentials along with interesting data from each of the protocols. blackarch-sniffer
369creepy A geolocation information gatherer. Offers geolocation information gathering through social networking platforms. blackarch-scanner
370cribdrag An interactive crib dragging tool for cryptanalysis on ciphertext generated with reused or predictable stream cipher keys. blackarch-crypto
371crlf-injector A python script for testing CRLF injecting issues. blackarch-fuzzer
372crosslinked LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping. blackarch-social
373crosstool-ng Versatile (cross-)toolchain generator. blackarch-misc
374crowbar A brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supported by thc-hydra and other popular brute forcing tools. blackarch-cracker
375crozono A modular framework designed to automate the penetration testing of wireless networks from drones and such unconventional devices. blackarch-drone
376crunch A wordlist generator for all combinations/permutations of a given character set. blackarch-automation
377crypthook TCP/UDP symmetric encryption tunnel wrapper. blackarch-crypto
378cryptohazemultiforcer High performance multihash brute forcer with CUDA support. blackarch-cracker
379cryptonark SSL security checker. blackarch-crypto
380csrftester The OWASP CSRFTester Project attempts to give developers the ability to test their applications for CSRF flaws. blackarch-webapp
381ct-exposer An OSINT tool that discovers sub-domains by searching Certificate Transparency logs. blackarch-scanner
382ctunnel Tunnel and/or proxy TCP or UDP connections via a cryptographic tunnel. blackarch-tunnel
383cuckoo Automated malware analysis system. blackarch-malware
384cudahashcat Worlds fastest WPA cracker with dictionary mutation engine. blackarch-cracker
385cupp Common User Password Profiler blackarch-cracker
386cutycapt A Qt and WebKit based command-line utility that captures WebKit's rendering of a web page. blackarch-recon
387cve-search A tool to perform local searches for known vulnerabilities. blackarch-exploitation
388cvechecker The goal of cvechecker is to report about possible vulnerabilities on your system, by scanning the installed software and matching the results with the CVE database. blackarch-scanner
389cybercrowl A Python Web path scanner tool. blackarch-webapp
390cyberscan A Network Pentesting Tool blackarch-networking
391cymothoa A stealth backdooring tool, that inject backdoor's shellcode into an existing process. blackarch-backdoor
392d-tect Pentesting the Modern Web. blackarch-scanner
393dagon Advanced Hash Manipulation. blackarch-crypto
394damm Differential Analysis of Malware in Memory. blackarch-malware
395daredevil A tool to perform (higher-order) correlation power analysis attacks (CPA). blackarch-crypto
396dark-dork-searcher Dark-Dork Searcher. blackarch-windows
397darkbing A tool written in python that leverages bing for mining data on systems that may be susceptible to SQL injection. blackarch-scanner
398darkd0rk3r Python script that performs dork searching and searches for local file inclusion and SQL injection errors. blackarch-exploitation
399darkjumper This tool will try to find every website that host at the same server at your target. blackarch-webapp
400darkmysqli Multi-Purpose MySQL Injection Tool blackarch-exploitation
401darkscrape OSINT Tool For Scraping Dark Websites. blackarch-webapp
402darkspiritz A penetration testing framework for Linux, MacOS, and Windows systems. blackarch-exploitation
403darkstat Network statistics gatherer (packet sniffer) blackarch-sniffer
404datajackproxy A proxy which allows you to intercept TLS traffic in native x86 applications across platform. blackarch-proxy
405datasploit Performs automated OSINT and more. blackarch-recon
406davoset A tool for using Abuse of Functionality and XML External Entities vulnerabilities on some websites to attack other websites. blackarch-dos
407davscan Fingerprints servers, finds exploits, scans WebDAV. blackarch-webapp
408davtest Tests WebDAV enabled servers by uploading test executable files, and then (optionally) uploading files which allow for command execution or other actions directly on the target blackarch-scanner
409dawnscanner A static analysis security scanner for ruby written web applications. blackarch-webapp
410dbd A Netcat-clone, designed to be portable and offer strong encryption. It runs on Unix-like operating systems and on Microsoft Win32. blackarch-misc
411dbpwaudit A Java tool that allows you to perform online audits of password quality for several database engines. blackarch-cracker
412dbusmap Simple utility for enumerating D-Bus endpoints, an nmap for D-Bus. blackarch-scanner
413dc3dd A patched version of dd that includes a number of features useful for computer forensics. blackarch-forensic
414dcfldd DCFL (DoD Computer Forensics Lab) dd replacement with hashing blackarch-forensic
415dcrawl Simple, but smart, multi-threaded web crawler for randomly gathering huge lists of unique domain names. blackarch-scanner
416ddrescue GNU data recovery tool blackarch-forensic
417de4dot .NET deobfuscator and unpacker. blackarch-windows
418deathstar Automate getting Domain Admin using Empire. blackarch-automation
419debinject Inject malicious code into *.debs. blackarch-backdoor
420deblaze A remote method enumeration tool for flex servers blackarch-scanner
421decodify Tool that can detect and decode encoded strings, recursively. blackarch-crypto
422deen Generic data encoding/decoding application built with PyQt5. blackarch-crypto
423delldrac DellDRAC and Dell Chassis Discovery and Brute Forcer. blackarch-scanner
424delorean NTP Main-in-the-Middle tool. blackarch-exploitation
425demiguise HTA encryption tool for RedTeams. blackarch-crypto
426depant Check network for services with default passwords. blackarch-cracker
427depdep A merciless sentinel which will seek sensitive files containing critical info leaking through your network. blackarch-networking
428det (extensible) Data Exfiltration Toolkit. blackarch-networking
429detect-it-easy A program for determining types of files. blackarch-binary
430detect-sniffer Tool that detects sniffers in the network. blackarch-defensive
431detectem Detect software and its version on websites. blackarch-fingerprint
432device-pharmer Opens 1K+ IPs or Shodan search results and attempts to login. blackarch-cracker
433dex2jar A tool for converting Android's .dex format to Java's .class format blackarch-hardware
434dexpatcher Modify Android DEX/APK files at source-level using Java. blackarch-mobile
435dff-scanner Tool for finding path of predictable resource locations. blackarch-webapp
436dga-detection DGA Domain Detection using Bigram Frequency Analysis. blackarch-recon
437dhcdrop Remove illegal dhcp servers with IP-pool underflow. blackarch-misc
438dhcpf Passive DHCP fingerprinting implementation. blackarch-fingerprint
439dhcpig Enhanced DHCPv4 and DHCPv6 exhaustion and fuzzing script written in python using scapy network library. blackarch-scanner
440dhcpoptinj DHCP option injector. blackarch-networking
441didier-stevens-suite Didier Stevens Suite.
442dinouml A network simulation tool, based on UML (User Mode Linux) that can simulate big Linux networks on a single PC blackarch-networking
443dirb A web content scanner, brute forceing for hidden files. blackarch-scanner
444dirble Fast directory scanning and scraping tool. blackarch-webapp
445dirbuster-ng C CLI implementation of the Java dirbuster tool. blackarch-webapp
446directorytraversalscan Detect directory traversal vulnerabilities in HTTP servers and web applications. blackarch-windows
447dirhunt Find web directories without bruteforce. blackarch-webapp
448dirscanner This is a python script that scans webservers looking for administrative directories, php shells, and more. blackarch-scanner
449dirscraper OSINT Scanning tool which discovers and maps directories found in javascript files hosted on a website. blackarch-webapp
450dirsearch HTTP(S) directory/file brute forcer. blackarch-webapp
451disitool Tool to work with Windows executables digital signatures. blackarch-forensic
452dislocker Read BitLocker encrypted volumes under Linux blackarch-crypto
453dissector This code dissects the internal data structures in ELF files. It supports x86 and x86_64 archs and runs under Linux. blackarch-binary
454distorm Powerful disassembler library for x86/AMD64 blackarch-disassembler
455dizzy A Python based fuzzing framework with many features. blackarch-fuzzer
456dkmc Dont kill my cat - Malicious payload evasion tool. blackarch-exploitation
457dmg2img A CLI tool to uncompress Apple's compressed DMG files to the HFS+ IMG format blackarch-forensic
458dmitry Deepmagic Information Gathering Tool. Gathers information about hosts. It is able to gather possible subdomains, email addresses, and uptime information and run tcp port scans, whois lookups, and more. blackarch-scanner
459dnmap The distributed nmap framework blackarch-scanner
460dns-parallel-prober PoC for an adaptive parallelised DNS prober. blackarch-recon
461dns-reverse-proxy A reverse DNS proxy written in Go. blackarch-proxy
462dns-spoof Yet another DNS spoof utility. blackarch-spoof
463dns2geoip A simple python script that brute forces DNS and subsequently geolocates the found subdomains. blackarch-scanner
464dns2tcp A tool for relaying TCP connections over DNS. blackarch-tunnel
465dnsa DNSA is a dns security swiss army knife blackarch-scanner
466dnsbf Search for available domain names in an IP range. blackarch-scanner
467dnsbrute Multi-theaded DNS bruteforcing, average speed 80 lookups/second with 40 threads. blackarch-recon
468dnschef A highly configurable DNS proxy for pentesters. blackarch-proxy
469dnsdiag DNS Diagnostics and Performance Measurement Tools. blackarch-networking
470dnsdrdos Proof of concept code for distributed DNS reflection DoS. blackarch-dos
471dnsenum Script that enumerates DNS information from a domain, attempts zone transfers, performs a brute force dictionary style attack, and then performs reverse look-ups on the results. blackarch-recon
472dnsfilexfer File transfer via DNS. blackarch-networking
473dnsgoblin Nasty creature constantly searching for DNS servers. It uses standard dns querys and waits for the replies. blackarch-scanner
474dnsgrep A utility for quickly searching presorted DNS names. blackarch-recon
475dnsmap Passive DNS network mapper blackarch-fingerprint
476dnspredict DNS prediction. blackarch-scanner
477dnspy .NET debugger and assembly editor. blackarch-windows
478dnsrecon Python script for enumeration of hosts, subdomains and emails from a given domain using google. blackarch-recon
479dnssearch A subdomain enumeration tool. blackarch-recon
480dnsspider A very fast multithreaded bruteforcer of subdomains that leverages a wordlist and/or character permutation. blackarch-recon
481dnsteal DNS Exfiltration tool for stealthily sending files over DNS requests.. blackarch-networking
482dnstracer Determines where a given DNS server gets its information from, and follows the chain of DNS servers blackarch-recon
483dnstwist Domain name permutation engine for detecting typo squatting, phishing and corporate espionage. blackarch-scanner
484dnswalk A DNS debugger and zone-transfer utility. blackarch-recon
485dockerscan Docker security analysis & hacking tools. blackarch-scanner
486domain-analyzer Finds all the security information for a given domain name. blackarch-recon
487domain-stats A web API to deliver domain information from whois and alexa. blackarch-recon
488domi-owned A tool used for compromising IBM/Lotus Domino servers. blackarch-webapp
489domlink A tool to link a domain with registered organisation names and emails, to other domains. blackarch-misc
490donut Generates x86, x64 or AMD64+x86 P.I. shellcode loading .NET Assemblies from memory. blackarch-backdoor
491doona A fork of the Bruteforce Exploit Detector Tool (BED). blackarch-fuzzer
492doork Passive Vulnerability Auditor. blackarch-webapp
493doozer A Password cracking utility. blackarch-cracker
494dorkbot Command-line tool to scan Google search results for vulnerabilities. blackarch-scanner
495dorkme Tool designed with the purpose of making easier the searching of vulnerabilities with Google Dorks, such as SQL Injection vulnerabilities. blackarch-scanner
496dorknet Selenium powered Python script to automate searching for vulnerable web apps. blackarch-webapp
497dotdotpwn The Transversal Directory Fuzzer blackarch-exploitation
498dotpeek Free .NET Decompiler and Assembly Browser. blackarch-windows
499dpeparser Default password enumeration project blackarch-cracker
500dpscan Drupal Vulnerabilty Scanner. blackarch-scanner
501dr-checker A Soundy Vulnerability Detection Tool for Linux Kernel Drivers. blackarch-exploitation
502dr0p1t-framework A framework that creates a dropper that bypass most AVs, some sandboxes and have some tricks. blackarch-backdoor
503dracnmap Tool to exploit the network and gathering information with nmap help. blackarch-automation
504dradis-ce An open source framework to enable effective information sharing. blackarch-recon
505dragon-backdoor A sniffing, non binding, reverse down/exec, portknocking service Based on cd00r.c. blackarch-backdoor
506driftnet Listens to network traffic and picks out images from TCP streams it observes. blackarch-scanner
507drinkme A shellcode testing harness. blackarch-exploitation
508dripcap Caffeinated Packet Analyzer. blackarch-networking
509dripper A fast, asynchronous DNS scanner; it can be used for enumerating subdomains and enumerating boxes via reverse DNS. blackarch-scanner
510droopescan A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe. blackarch-webapp
511drozer A security testing framework for Android - Precompiled binary from official repository. blackarch-mobile
512drupal-module-enum Enumerate on drupal modules. blackarch-webapp
513drupalscan Simple non-intrusive Drupal scanner. blackarch-webapp
514drupwn Drupal enumeration & exploitation tool. blackarch-webapp
515dscanner Swiss-army knife for D source code blackarch-code-audit
516dsd Digital Speech Decoder blackarch-misc
517dsfs A fully functional File inclusion vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code. blackarch-webapp
518dshell A network forensic analysis framework. blackarch-forensic
519dsjs A fully functional JavaScript library vulnerability scanner written in under 100 lines of code. blackarch-webapp
520dsniff Collection of tools for network auditing and penetration testing blackarch-sniffer
521dsss A fully functional SQL injection vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code. blackarch-webapp
522dsstore-crawler A parser + crawler for .DS_Store files exposed publically. blackarch-webapp
523dsxs A fully functional Cross-site scripting vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code. blackarch-webapp
524dtp-spoof Python script/security tool to test Dynamic Trunking Protocol configuration on a switch. blackarch-networking
525dumb0 A simple tool to dump users in popular forums and CMS. blackarch-automation
526dump1090 A simple Mode S decoder for RTLSDR devices. blackarch-networking
527dumpacl Dumps NTs ACLs and audit settings. blackarch-windows
528dumpusers Dumps account names and information even though RestrictAnonymous has been set to 1. blackarch-windows
529dumpzilla A forensic tool for firefox. blackarch-forensic
530dutas Analysis PE file or Shellcode. blackarch-binary
531dvcs-ripper Rip web accessible (distributed) version control systems: SVN/GIT/BZR/CVS/HG. blackarch-scanner
532dwarf Full featured multi arch/os debugger built on top of PyQt5 and frida. blackarch-binary
533dynamorio A dynamic binary instrumentation framework. blackarch-binary
534eapeak Analysis Suite For EAP Enabled Wireless Networks. blackarch-wireless
535eaphammer Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks. blackarch-wireless
536eapmd5pass An implementation of an offline dictionary attack against the EAP-MD5 protocol. blackarch-cracker
537easy-creds A bash script that leverages ettercap and other tools to obtain credentials. blackarch-automation
538easyda Easy Windows Domain Access Script. blackarch-automation
539easyfuzzer A flexible fuzzer, not only for web, has a CSV output for efficient output analysis (platform independant). blackarch-fuzzer
540eazy This is a small python tool that scans websites to look for PHP shells, backups, admin panels, and more. blackarch-scanner
541ecfs Extended core file snapshot format. blackarch-binary
542edb A cross platform AArch32/x86/x86 debugger. blackarch-debugger
543eggshell iOS/macOS/Linux Remote Administration Tool. blackarch-backdoor
544eigrp-tools This is a custom EIGRP packet generator and sniffer developed to test the security and overall operation quality of this brilliant Cisco routing protocol. blackarch-sniffer
545elettra Encryption utility by Julia Identity blackarch-misc
546elettra-gui Gui for the elettra crypto application. blackarch-misc
547elfkickers Collection of ELF utilities (includes sstrip) blackarch-binary
548elfparser Cross Platform ELF analysis. blackarch-binary
549elidecode A tool to decode obfuscated shellcodes using the unicorn-engine for the emulation and the capstone-engine to print the asm code. blackarch-reversing
550elite-proxy-finder Finds public elite anonymity proxies and concurrently tests them. blackarch-proxy
551email2phonenumber A OSINT tool to obtain a target's phone number just by having his email address. blackarch-social
552emldump Analyze MIME files. blackarch-forensic
553empire A PowerShell and Python post-exploitation agent. blackarch-automation
554enabler Attempts to find the enable password on a cisco system via brute force. blackarch-cracker
555encodeshellcode This is an encoding tool for 32-bit x86 shellcode that assists a researcher when dealing with character filter or byte restrictions in a buffer overflow vulnerability or some kind of IDS/IPS/AV blocking your code. blackarch-exploitation
556ent Pseudorandom number sequence test. blackarch-misc
557enteletaor Message Queue & Broker Injection tool that implements attacks to Redis, RabbitMQ and ZeroMQ. blackarch-exploitation
558enum-shares Tool that enumerates shared folders across the network and under a custom user account. blackarch-scanner
559enum4linux A tool for enumerating information from Windows and Samba systems. blackarch-recon
560enumerid Enumerate RIDs using pure Python. blackarch-recon
561enumiax An IAX enumerator. blackarch-scanner
562enyelkm Rootkit for Linux x86 kernels v2.6. blackarch-backdoor
563epicwebhoneypot Tool which aims to lure attackers using various types of web vulnerability scanners by tricking them into believing that they have found a vulnerability on a host. blackarch-webapp
564erase-registrations An IAX flooder. blackarch-voip
565eraser Windows tool which allows you to completely remove sensitive data from your hard drive by overwriting it several times with carefully selected patterns. blackarch-windows
566eresi The ERESI Reverse Engineering Software Interface. blackarch-binary
567eternal-scanner An internet scanner for exploit CVE-0144 (Eternal Blue). blackarch-scanner
568etherape Graphical network monitor for various OSI layers and protocols blackarch-networking
569etherchange Can change the Ethernet address of the network adapters in Windows. blackarch-windows
570etherflood Floods a switched network with Ethernet frames with random hardware addresses. blackarch-windows
571ettercap A network sniffer/interceptor/logger for ethernet LANs - console blackarch-sniffer
572evil-ssdp Spoof SSDP replies to phish for NetNTLM challenge/response on a network. blackarch-spoof
573evilclippy A cross-platform assistant for creating malicious MS Office documents. blackarch-exploitation
574evilginx Man-in-the-middle attack framework used for phishing login credentials blackarch-social
575evilgrade Modular framework that takes advantage of poor upgrade implementations by injecting fake updates. blackarch-misc
576evilize Tool to create MD5 colliding binaries. blackarch-cracker
577evillimiter Tool that limits bandwidth of devices on the same network without access. blackarch-networking
578evilmaid TrueCrypt loader backdoor to sniff volume password blackarch-cracker
579evtkit Fix acquired .evt - Windows Event Log files (Forensics). blackarch-forensic
580exabgp The BGP swiss army knife of networking. blackarch-networking
581exe2image A simple utility to convert EXE files to JPEG images and vice versa. blackarch-backdoor
582exescan A tool to detect anomalies in PE (Portable Executable) files. blackarch-binary
583exitmap A fast and modular scanner for Tor exit relays. blackarch-recon
584exiv2 Exif, Iptc and XMP metadata manipulation library and tools blackarch-forensic
585expimp-lookup Looks for all export and import names that contain a specified string in all Portable Executable in a directory tree. blackarch-binary
586exploit-db The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software - A collection of hacks blackarch-exploitation
587exploitdb Offensive Security’s Exploit Database Archive blackarch-exploitation
588exploitpack Exploit Pack - The next generation exploit framework. blackarch-exploitation
589expose A Dynamic Symbolic Execution (DSE) engine for JavaScript blackarch-binary
590exrex Irregular methods on regular expressions. blackarch-misc
591extracthosts Extracts hosts (IP/Hostnames) from files. blackarch-misc
592extundelete Utility for recovering deleted files from ext2, ext3 or ext4 partitions by parsing the journal blackarch-forensic
593eyepwn Exploit for Eye-Fi Helper directory traversal vulnerability blackarch-exploitation
594eyewitness Designed to take screenshots of websites, provide some server header info, and identify default credentials if possible. blackarch-webapp
595f-scrack A single file bruteforcer supports multi-protocol. blackarch-cracker
596facebash Facebook Brute Forcer in shellscript using TOR. blackarch-social
597facebot A facebook profile and reconnaissance system. blackarch-recon
598facebrok Social Engineering Tool Oriented to facebook. blackarch-social
599facebrute This script tries to guess passwords for a given facebook account using a list of passwords (dictionary). blackarch-cracker
600factordb-pycli CLI for factordb and Python API Client. blackarch-crypto
601fakeap Black Alchemy's Fake AP generates thousands of counterfeit 802.11b access points. Hide in plain sight amongst Fake AP's cacophony of beacon frames. blackarch-honeypot
602fakedns A regular-expression based python MITM DNS server with correct DNS request passthrough and "Not Found" responses. blackarch-proxy
603fakemail Fake mail server that captures e-mails as files for acceptance testing. blackarch-misc
604fakenet-ng Next Generation Dynamic Network Analysis Tool. blackarch-malware
605fakenetbios A family of tools designed to simulate Windows hosts (NetBIOS) on a LAN. blackarch-spoof
606fang A multi service threaded MD5 cracker. blackarch-cracker
607faraday A new concept (IPE) Integrated Penetration-Test Environment a multiuser Penetration test IDE. Designed for distribution, indexation and analyze of the generated data during the process of a security audit. blackarch-scanner
608fastnetmon High performance DoS/DDoS load analyzer built on top of multiple packet capture engines. blackarch-defensive
609fbht A Facebook Hacking Tool blackarch-webapp
610fbid Show info about the author by facebook photo url. blackarch-recon
611fcrackzip Zip file password cracker blackarch-cracker
612featherduster An automated, modular cryptanalysis tool. blackarch-crypto
613fern-wifi-cracker WEP, WPA wifi cracker for wireless penetration testing blackarch-cracker
614fernflower An analytical decompiler for Java. blackarch-decompiler
615fernmelder Asynchronous mass DNS scanner. blackarch-scanner
616ffuf Fast web fuzzer written in Go. blackarch-webapp
617fgscanner An advanced, opensource URL scanner. blackarch-scanner
618fhttp This is a framework for HTTP related attacks. It is written in Perl with a GTK interface, has a proxy for debugging and manipulation, proxy chaining, evasion rules, and more. blackarch-webapp
619fi6s IPv6 network scanner designed to be fast. blackarch-scanner
620fierce A DNS scanner blackarch-scanner
621fiked Fake IDE daemon blackarch-honeypot
622filebuster An extremely fast and flexible web fuzzer. blackarch-webapp
623filefuzz A binary file fuzzer for Windows with several options. blackarch-windows
624filegps A tool that help you to guess how your shell was renamed after the server-side script of the file uploader saved it. blackarch-webapp
625fileintel A modular Python application to pull intelligence about malicious files. blackarch-malware
626filibuster A Egress filter mapping application with additional functionality. blackarch-networking
627fimap A little tool for local and remote file inclusion auditing and exploitation blackarch-exploitation
628finalrecon OSINT Tool for All-In-One Web Reconnaissance. blackarch-recon
629find-dns A tool that scans networks looking for DNS servers. blackarch-scanner
630findmyhash Crack different types of hashes using free online services blackarch-crypto
631findmyiphone Locates all devices associated with an iCloud account blackarch-mobile
632findomain The fastest and cross-platform subdomain enumerator, do not waste your time. blackarch-scanner
633findsploit Find exploits in local and online databases instantly. blackarch-automation
634fingerprinter CMS/LMS/Library etc Versions Fingerprinter. blackarch-fingerprint
635firecat A penetration testing tool that allows you to punch reverse TCP tunnels out of a compromised network. blackarch-networking
636firefox-security-toolkit A tool that transforms Firefox browsers into a penetration testing suite. blackarch-misc
637firewalk An active reconnaissance network security tool blackarch-fuzzer
638firmwalker Script for searching the extracted firmware file system for goodies. blackarch-firmware
639firmware-mod-kit Modify firmware images without recompiling. blackarch-firmware
640firstexecution A Collection of different ways to execute code outside of the expected entry points. blackarch-exploitation
641firstorder A traffic analyzer to evade Empire communication from Anomaly-Based IDS. blackarch-sniffer
642fl0p A passive L7 flow fingerprinter that examines TCP/UDP/ICMP packet sequences, can peek into cryptographic tunnels, can tell human beings and robots apart, and performs a couple of other infosec-related tricks. blackarch-fingerprint
643flamerobin A tool to handle Firebird database management. blackarch-database
644flare Flare processes an SWF and extracts all scripts from it. blackarch-misc
645flare-floss Obfuscated String Solver - Automatically extract obfuscated strings from malware. blackarch-malware
646flashlight Automated Information Gathering Tool for Penetration Testers. blackarch-recon
647flashscanner Flash XSS Scanner. blackarch-scanner
648flashsploit Exploitation Framework for ATtiny85 Based HID Attacks. blackarch-exploitation
649flasm Disassembler tool for SWF bytecode blackarch-reversing
650flawfinder Searches through source code for potential security flaws blackarch-code-audit
651flowinspect A network traffic inspection tool. blackarch-networking
652flunym0us A Vulnerability Scanner for Wordpress and Moodle. blackarch-scanner
653fluxion A security auditing and social-engineering research tool. blackarch-social
654flyr Block-based software vulnerability fuzzing framework. blackarch-fuzzer
655forager Multithreaded threat Intelligence gathering utilizing. blackarch-recon
656foremost A console program to recover files based on their headers, footers, and internal data structures blackarch-forensic
657foresight A tool for predicting the output of random number generators. blackarch-crypto
658forkingportscanner Simple and fast forking port scanner written in perl. Can only scan on host at a time, the forking is done on the specified port range. Or on the default range of 1. Has the ability to scan UDP or TCP, defaults to tcp. blackarch-scanner
659formatstringexploiter Helper script for working with format string bugs. blackarch-exploitation
660fpdns Program that remotely determines DNS server versions. blackarch-fingerprint
661fping Utility to ping multiple hosts at once blackarch-networking
662fport Identify unknown open ports and their associated applications. blackarch-windows
663fprotlogparser This is a utility to parse a F-Prot Anti Virus log file, in order to sort them into a malware archive for easier maintanence of your collection. blackarch-malware
664fraud-bridge ICMP and DNS tunneling via IPv4 and IPv6. blackarch-tunnel
665freeipmi Sensor monitoring, system event monitoring, power control, and serial-over-LAN (SOL). blackarch-networking
666freeradius The premier open source RADIUS server blackarch-wireless
667freewifi How to get free wifi. blackarch-wireless
668frida Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. blackarch-reversing
669frida-extract Frida.re based RunPE (and MapViewOfSection) extraction tool. blackarch-reversing
670frida-ios-dump Pull decrypted ipa from jailbreak device. blackarch-mobileblackarch-reversing
671frida-ipa-dump Yet another frida based iOS dumpdecrypted. blackarch-mobileblackarch-reversing
672fridump A universal memory dumper using Frida. blackarch-forensic
673frisbeelite A GUI-based USB device fuzzer. blackarch-fuzzer
674fs-exploit Format string exploit generation. blackarch-exploitation
675fs-nyarl A network takeover & forensic analysis tool - useful to advanced PenTest tasks & for fun and profit. blackarch-scanner
676fsnoop A tool to monitor file operations on GNU/Linux systems by using the Inotify mechanism. Its primary purpose is to help detecting file race condition vulnerabilities and since version 3, to exploit them with loadable DSO modules (also called "payload modules" or "paymods"). blackarch-scanner
677fssb A low-level filesystem sandbox for Linux using syscall intercepts. blackarch-defensive
678fstealer Automates file system mirroring through remote file disclosure vulnerabilities on Linux machines. blackarch-automation
679ftester A tool designed for testing firewall filtering policies and Intrusion Detection System (IDS) capabilities. blackarch-fuzzer
680ftp-fuzz The master of all master fuzzing scripts specifically targeted towards FTP server sofware. blackarch-fuzzer
681ftp-scanner Multithreaded ftp scanner/brute forcer. Tested on Linux, OpenBSD and Solaris. blackarch-cracker
682ftp-spider FTP investigation tool - Scans ftp server for the following: reveal entire directory tree structures, detect anonymous access, detect directories with write permissions, find user specified data within repository. blackarch-scanner
683ftpmap Scans remote FTP servers to identify what software and what versions they are running. blackarch-fingerprint
684ftpscout Scans ftps for anonymous access. blackarch-scanner
685fuddly Fuzzing and Data Manipulation Framework (for GNU/Linux). blackarch-fuzzer
686fusil A Python library used to write fuzzing programs. blackarch-fuzzer
687fuxploider Tool that automates the process of detecting and exploiting file upload forms flaws. blackarch-webapp
688fuzzap A python script for obfuscating wireless networks. blackarch-wireless
689fuzzball2 A little fuzzer for TCP and IP options. It sends a bunch of more or less bogus packets to the host of your choice. blackarch-fuzzer
690fuzzdb Attack and Discovery Pattern Dictionary for Application Fault Injection Testing blackarch-fuzzer
691fuzzdiff A simple tool designed to help out with crash analysis during fuzz testing. It selectively 'un-fuzzes' portions of a fuzzed file that is known to cause a crash, re-launches the targeted application, and sees if it still crashes. blackarch-fuzzer
692fuzztalk An XML driven fuzz testing framework that emphasizes easy extensibility and reusability. blackarch-windows
693g72x++ Decoder for the g72x++ codec. blackarch-wireless
694gasmask All in one Information gathering tool - OSINT. blackarch-recon
695gatecrasher Network auditing and analysis tool developed in Python. blackarch-recon
696gcat A fully featured backdoor that uses Gmail as a C&C server. blackarch-malware
697gcrypt Simple, secure and performance file encryption tool written in C blackarch-crypto
698gdb The GNU Debugger blackarch-debugger
699gdbgui Browser-based gdb frontend using Flask and JavaScript to visually debug C, C++, Go, or Rust. blackarch-debugger
700gef Multi-Architecture GDB Enhanced Features for Exploiters & Reverse-Engineers. blackarch-debugger
701genlist Generates lists of IP addresses. blackarch-misc
702geoedge This little tools is designed to get geolocalization information of a host, it get the information from two sources (maxmind and geoiptool). blackarch-recon
703geoip Non-DNS IP-to-country resolver C library & utils blackarch-networking
704geoipgen GeoIPgen is a country to IP addresses generator. blackarch-misc
705gerix-wifi-cracker A graphical user interface for aircrack-ng and pyrit. blackarch-wireless
706gethsploit Finding Ethereum nodes which are vulnerable to RPC-attacks. blackarch-scanner
707getsids Getsids tries to enumerate Oracle Sids by sending the services command to the Oracle TNS listener. Like doing ‘lsnrctl service’. blackarch-database
708getsploit Command line utility for searching and downloading exploits. blackarch-exploitation
709gggooglescan A Google scraper which performs automated searches and returns results of search queries in the form of URLs or hostnames. blackarch-scanner
710ghettotooth Ghettodriving for bluetooth blackarch-bluetooth
711ghost-phisher GUI suite for phishing and penetration attacks blackarch-scanner
712ghost-py Webkit based webclient (relies on PyQT). blackarch-webapp
713ghostdelivery Python script to generate obfuscated .vbs script that delivers payload (payload dropper) with persistence and windows antivirus disabling functions. blackarch-exploitation
714giskismet A program to visually represent the Kismet data in a flexible manner. blackarch-wireless
715git-hound Pinpoints exposed API keys on GitHub. A batch-catching, pattern-matching, patch-attacking secret snatcher. blackarch-recon
716gitem A Github organization reconnaissance tool. blackarch-recon
717githack A `.git` folder disclosure exploit. blackarch-recon
718githubcloner A script that clones Github repositories of users and organizations automatically. blackarch-misc
719gitleaks Audit Git repos for secrets and keys. blackarch-recon
720gitmails An information gathering tool to collect git commit emails in version control host services. blackarch-recon
721gitminer Tool for advanced mining for content on Github. blackarch-recon
722gitrob Reconnaissance tool for GitHub organizations. blackarch-scanner
723gittools A repository with 3 tools for pwn'ing websites with .git repositories available'. blackarch-webapp
724gloom Linux Penetration Testing Framework. blackarch-scanner
725glue A framework for running a series of tools. blackarch-automation
726gnuradio General purpose DSP and SDR toolkit. With drivers for usrp and fcd. blackarch-wireless
727gnutls2 A library which provides a secure layer over a reliable transport layer (Version 2) blackarch-crypto
728gobd A Golang covert backdoor. blackarch-backdoor
729gobuster Directory/file & DNS busting tool written in Go. blackarch-webapp
730goddi Dumps Active Directory domain information. blackarch-recon
731goldeneye A HTTP DoS test tool. Attack Vector exploited: HTTP Keep Alive + NoCache. blackarch-dos
732golismero Opensource web security testing framework. blackarch-webapp
733goodork A python script designed to allow you to leverage the power of google dorking straight from the comfort of your command line. blackarch-recon
734goofile Command line filetype search blackarch-recon
735goog-mail Enumerate domain emails from google. blackarch-recon
736google-explorer Google mass exploit robot - Make a google search, and parse the results for a especific exploit you define. blackarch-automation
737googlesub A python script to find domains by using google dorks. blackarch-recon
738goohak Automatically Launch Google Hacking Queries Against A Target Domain. blackarch-recon
739goop Perform google searches without being blocked by the CAPTCHA or hitting any rate limits. blackarch-recon
740gooscan A tool that automates queries against Google search appliances, but with a twist. blackarch-automation
741gopherus Tool generates gopher link for exploiting SSRF and gaining RCE in various servers. blackarch-webapp
742gophish Open-Source Phishing Framework. blackarch-social
743gosint OSINT framework in Go. blackarch-recon
744gplist Lists information about the applied Group Policies. blackarch-windows
745gpredict A real-time satellite tracking and orbit prediction application. blackarch-radio
746gps-sdr-sim Software-Defined GPS Signal Simulator. blackarch-radio
747gqrx Interactive SDR receiver waterfall for many devices. blackarch-wireless
748gr-air-modes Gnuradio tools for receiving Mode S transponder signals, including ADS-B. blackarch-radio
749gr-gsm Gnuradio blocks and tools for receiving GSM transmissions blackarch-radio
750gr-paint An OFDM Spectrum Painter for GNU Radio. blackarch-radio
751grabbb Clean, functional, and fast banner scanner. blackarch-scanner
752grabber A web application scanner. Basically it detects some kind of vulnerabilities in your website. blackarch-webapp
753grabing Counts all the hostnames for an IP adress blackarch-recon
754grabitall Performs traffic redirection by sending spoofed ARP replies. blackarch-windows
755graffiti A tool to generate obfuscated one liners to aid in penetration testing. blackarch-misc
756grammarinator A random test generator / fuzzer that creates test cases according to an input ANTLR v4 grammar. blackarch-fuzzer
757graudit Grep rough source code auditing tool. blackarch-code-audit
758greenbone-security-assistant Greenbone Security Assistant (gsa) - OpenVAS web frontend blackarch-scanner
759grepforrfi Simple script for parsing web logs for RFIs and Webshells v1.2 blackarch-scanner
760grokevt A collection of scripts built for reading Windows® NT/2K/XP/2K eventlog files. blackarch-forensic
761grr High-throughput fuzzer and emulator of DECREE binaries. blackarch-fuzzer
762gsd Gives you the Discretionary Access Control List of any Windows NT service you specify as a command line option. blackarch-windows
763gspoof A simple GTK/command line TCP/IP packet generator. blackarch-networking
764gtalk-decode Google Talk decoder tool that demonstrates recovering passwords from accounts. blackarch-windows
765gtp-scan A small python script that scans for GTP (GPRS tunneling protocol) speaking hosts. blackarch-scanner
766guymager A forensic imager for media acquisition. blackarch-forensic
767gvmd greenbone-vulnerability-manager blackarch-scanner
768gwcheck A simple program that checks if a host in an ethernet network is a gateway to Internet. blackarch-networking
769gwtenum Enumeration of GWT-RCP method calls. blackarch-recon
770h2buster A threaded, recursive, web directory brute-force scanner over HTTP/2. blackarch-scanner
771h2spec A conformance testing tool for HTTP/2 implementation. blackarch-misc
772h2t Scans a website and suggests security headers to apply. blackarch-webapp
773h8mail Email OSINT and password breach hunting. blackarch-recon
774habu Python Network Hacking Toolkit. blackarch-scanner
775hackersh A shell for with Pythonect-like syntax, including wrappers for commonly used security tools. blackarch-automation
776hackredis A simple tool to scan and exploit redis servers. blackarch-exploitation
777hackrf Driver for HackRF, allowing general purpose software defined radio (SDR). blackarch-radio
778haka A collection of tool that allows capturing TCP/IP packets and filtering them based on Lua policy files. blackarch-networking
779hakku Simple framework that has been made for penetration testing tools. blackarch-scanner
780halberd Halberd discovers HTTP load balancers. It is useful for web application security auditing and for load balancer configuration testing. blackarch-scanner
781halcyon A repository crawler that runs checksums for static files found within a given git repository. blackarch-recon
782halcyon-ide First IDE for Nmap Script (NSE) Development. blackarch-misc
783hamster Tool for HTTP session sidejacking. blackarch-exploitation
784handle An small application designed to analyze your system searching for global objects related to running proccess and display information for every found object, like tokens, semaphores, ports, files,.. blackarch-windows
785harness Interactive remote PowerShell Payload. blackarch-backdoor
786harpoon CLI tool for open source and threat intelligence. blackarch-automation
787hasere Discover the vhosts using google and bing. blackarch-recon
788hash-buster A python script which scraps online hash crackers to find cleartext of a hash. blackarch-crypto
789hash-extender A hash length extension attack tool. blackarch-crypto
790hash-identifier Software to identify the different types of hashes used to encrypt data and especially passwords. blackarch-crypto
791hashcat Multithreaded advanced password recovery utility blackarch-cracker
792hashcat-utils Set of small utilities that are useful in advanced password cracking blackarch-misc
793hashcatch Capture handshakes of nearby WiFi networks automatically. blackarch-wireless
794hashdb A block hash toolkit. blackarch-crypto
795hashdeep cross-platform tools to message digests for any number of files blackarch-crypto
796hasher A tool that allows you to quickly hash plaintext strings, or compare hashed values with a plaintext locally. blackarch-cracker
797hashfind A tool to search files for matching password hash types and other interesting data. blackarch-crypto
798hashid Software to identify the different types of hashes used to encrypt data. blackarch-crypto
799hashpump A tool to exploit the hash length extension attack in various hashing algorithms. blackarch-crypto
800hashtag A python script written to parse and identify password hashes. blackarch-cracker
801hatcloud Bypass CloudFlare with Ruby. blackarch-recon
802hate-crack A tool for automating cracking methodologies through Hashcat. blackarch-automation
803haystack A Python framework for finding C structures from process memory - heap analysis - Memory structures forensics. blackarch-binary
804hbad This tool allows you to test clients on the heartbleed bug. blackarch-scanner
805hcraft HTTP Vuln Request Crafter blackarch-exploitation
806hcxdumptool Small tool to capture packets from wlan devices blackarch-wireless
807hcxtools Portable solution for capturing wlan traffic and conversion to hashcat and John the Ripper formats blackarch-wireless
808hdcp-genkey Generate HDCP source and sink keys from the leaked master key. blackarch-crypto
809hdmi-sniff HDMI DDC (I2C) inspection tool. It is designed to demonstrate just how easy it is to recover HDCP crypto keys from HDMI devices. blackarch-hardware
810heartbleed-honeypot Script that listens on TCP port 443 and responds with completely bogus SSL heartbeat responses, unless it detects the start of a byte pattern similar to that used in Jared Stafford's blackarch-honeypot
811heartleech Scans for systems vulnerable to the heartbleed bug, and then download them. blackarch-exploitation
812hemingway A simple and easy to use spear phishing helper. blackarch-social
813hercules-payload A special payload generator that can bypass all antivirus software. blackarch-binary
814hex2bin Converts Motorola and Intel hex files to binary. blackarch-binary
815hexinject A very versatile packet injector and sniffer that provides a command-line framework for raw network access. blackarch-sniffer
816hexorbase A database application designed for administering and auditing multiple database servers simultaneously from a centralized location. It is capable of performing SQL queries and bruteforce attacks against common database servers (MySQL, SQLite, Microsoft SQL Server, Oracle, PostgreSQL). blackarch-fuzzer
817hexyl Colored command-line hex viewer blackarch-misc
818hharp This tool can perform man-in-the-middle and switch flooding attacks. It has 4 major functions, 3 of which attempt to man-in-the-middle one or more computers on a network with a passive method or flood type method. blackarch-networking
819hidattack HID Attack (attacking HID host implementations) blackarch-bluetooth
820hiddeneye Modern phishing tool with advanced functionality. blackarch-social
821hlextend Pure Python hash length extension module. blackarch-crypto
822hodor A general-use fuzzer that can be configured to use known-good input and delimiters in order to fuzz specific locations. blackarch-fuzzer
823hollows-hunter Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). blackarch-windows
824honeyd A small daemon that creates virtual hosts on a network. blackarch-honeypot
825honeypy A low interaction Honeypot. blackarch-honeypot
826honggfuzz A general-purpose fuzzer with simple, command-line interface. blackarch-fuzzer
827honssh A high-interaction Honey Pot solution designed to log all SSH communications between a client and server. blackarch-honeypot
828hookanalyser A hook tool which can be potentially helpful in reversing applications and analyzing malware. It can hook to an API in a process and search for a pattern in memory or dump the buffer. blackarch-windows
829hoover Wireless Probe Requests Sniffer. blackarch-wireless
830hoper Trace URL's jumps across the rel links to obtain the last URL. blackarch-recon
831hopper Reverse engineering tool that lets you disassemble, decompile and debug your applications. blackarch-reversing
832hoppy A python script which tests http methods for configuration issues leaking information or just to see if they are enabled. blackarch-scanner
833host-extract Ruby script tries to extract all IP/Host patterns in page response of a given URL and JavaScript/CSS files of that URL. blackarch-scanner
834hostapd-wpe IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator - Wireless Pwnage Edition. blackarch-wireless
835hostbox-ssh A ssh password/account scanner. blackarch-cracker
836hosthunter A recon tool for discovering hostnames using OSINT techniques. blackarch-recon
837hotpatch Hot patches executables on Linux using .so file injection. blackarch-backdoor
838hotspotter Hotspotter passively monitors the network for probe request frames to identify the preferred networks of Windows XP clients, and will compare it to a supplied list of common hotspot network names. blackarch-wireless
839howmanypeoplearearound Count the number of people around you by monitoring wifi signals. blackarch-recon
840hpfeeds Honeynet Project generic authenticated datafeed protocol. blackarch-honeypot
841hping A command-line oriented TCP/IP packet assembler/analyzer. blackarch-networking
842hqlmap A tool to exploit HQL Injections. blackarch-exploitation
843hsecscan A security scanner for HTTP response headers. blackarch-scanner
844htcap A web application analysis tool for detecting communications between javascript and the server. blackarch-webapp
845htexploit A Python script that exploits a weakness in the way that .htaccess files can be configured to protect a web directory with an authentication process blackarch-exploitation
846htpwdscan A python HTTP weak pass scanner. blackarch-cracker
847htrosbif Active HTTP server fingerprinting and recon tool. blackarch-fingerprint
848htshells Self contained web shells and other attacks via .htaccess files. blackarch-exploitation
849http-enum A tool to enumerate the enabled HTTP methods supported on a webserver. blackarch-scanner
850http-fuzz A simple http fuzzer. blackarch-fuzzer
851http-put Simple http put perl script. blackarch-misc
852http-traceroute This is a python script that uses the Max-Forwards header in HTTP and SIP to perform a traceroute-like scanning functionality. blackarch-networking
853httpbog A slow HTTP denial-of-service tool that works similarly to other attacks, but rather than leveraging request headers or POST data Bog consumes sockets by slowly reading responses. blackarch-windows
854httpforge A set of shell tools that let you manipulate, send, receive, and analyze HTTP messages. These tools can be used to test, discover, and assert the security of Web servers, apps, and sites. An accompanying Python library is available for extensions. blackarch-webapp
855httping A ping-like tool for http-requests blackarch-networking
856httppwnly "Repeater" style XSS post-exploitation tool for mass browser control. blackarch-webapp
857httprecon Tool for web server fingerprinting, also known as http fingerprinting. blackarch-windows
858httprint A web server fingerprinting tool. blackarch-fingerprint
859httprint-win32 A web server fingerprinting tool (Windows binaries). blackarch-windows
860httprobe Take a list of domains and probe for working HTTP and HTTPS servers blackarch-scanner
861httpry A specialized packet sniffer designed for displaying and logging HTTP traffic. blackarch-sniffer
862httpscreenshot A tool for grabbing screenshots and HTML of large numbers of websites. blackarch-misc
863httpsniff Tool to sniff HTTP responses from TCP/IP based networks and save contained files locally for later review. blackarch-sniffer
864httpsscanner A tool to test the strength of a SSL web server. blackarch-scanner
865httptunnel Creates a bidirectional virtual data connection tunnelled in HTTP requests blackarch-tunnel
866httrack An easy-to-use offline browser utility blackarch-misc
867hubbit-sniffer Simple application that listens for WIFI-frames and records the mac-address of the sender and posts them to a REST-api. blackarch-sniffer
868hulk A webserver DoS tool (Http Unbearable Load King) ported to Go with some additional features. blackarch-dos
869hungry-interceptor Intercepts data, does something with it, stores it. blackarch-sniffer
870hwk Collection of packet crafting and wireless network flooding tools blackarch-dos
871hyde Just another tool in C to do DDoS (with spoofing). blackarch-networking
872hydra Very fast network logon cracker which support many different services blackarch-cracker
873hyperfox A security tool for proxying and recording HTTP and HTTPs traffic. blackarch-networking
874hyperion-crypter A runtime encrypter for 32-bit and 64-bit portable executables. blackarch-windows
875iaxflood IAX flooder. blackarch-dos
876iaxscan A Python based scanner for detecting live IAX/2 hosts and then enumerating (by bruteforce) users on those hosts. blackarch-scanner
877ibrute An AppleID password bruteforce tool. It uses Find My Iphone service API, where bruteforce protection was not implemented. blackarch-cracker
878icloudbrutter Tool for AppleID Bruteforce. blackarch-cracker
879icmpquery Send and receive ICMP queries for address mask and current time. blackarch-scanner
880icmpsh Simple reverse ICMP shell. blackarch-backdoor
881icmptx IP over ICMP tunnel. blackarch-tunnel
882id-entify Search for information related to a domain: Emails - IP addresses - Domains - Information on WEB technology - Type of Firewall - NS and MX records. blackarch-recon
883idb A tool to simplify some common tasks for iOS pentesting and research. blackarch-mobile
884identywaf Blind WAF identification tool. blackarch-webapp
885idswakeup A collection of tools that allows to test network intrusion detection systems. blackarch-recon
886ifchk A network interface promiscuous mode detection tool. blackarch-defensive
887ifuzz A binary file fuzzer with several options. blackarch-fuzzer
888iheartxor A tool for bruteforcing encoded strings within a boundary defined by a regular expression. It will bruteforce the key value range of 0x1 through 0x255. blackarch-cracker
889iis-shortname-scanner An IIS shortname Scanner. blackarch-scanner
890iisbruteforcer HTTP authentication cracker. It's a tool that launchs an online dictionary attack to test for weak or simple passwords against protected areas on an IIS Web server. blackarch-cracker
891ike-scan A tool that uses IKE protocol to discover, fingerprint and test IPSec VPN servers blackarch-scanner
892ikecrack An IKE/IPSec crack tool designed to perform Pre-Shared-Key analysis of RFC compliant aggressive mode authentication blackarch-cracker
893ikeprobe Determine vulnerabilities in the PSK implementation of the VPN server. blackarch-windows
894ikeprober Tool crafting IKE initiator packets and allowing many options to be manually set. Useful to find overflows, error conditions and identifiyng vendors blackarch-fuzzer
895ilo4-toolbox Toolbox for HPE iLO4 analysis. blackarch-scanner
896ilty An interception phone system for VoIP network. blackarch-voip
897imagegrep Grep word in pdf or image based on OCR. blackarch-misc
898imagejs Small tool to package javascript into a valid image file. blackarch-binary
899imagemounter Command line utility and Python package to ease the (un)mounting of forensic disk images. blackarch-forensic
900inception A FireWire physical memory manipulation and hacking tool exploiting IEEE 1394 SBP DMA. blackarch-exploitation
901indxparse A Tool suite for inspecting NTFS artifacts. blackarch-forensic
902inetsim A software suite for simulating common internet services in a lab environment, e.g. for analyzing the network behaviour of unknown malware samples. blackarch-defensive
903infip A python script that checks output from netstat against RBLs from Spamhaus. blackarch-scanner
904infoga Tool for gathering e-mail accounts information from different public sources (search engines, pgp key servers). blackarch-recon
905inguma A free penetration testing and vulnerability discovery toolkit entirely written in python. Framework includes modules to discover hosts, gather information about, fuzz targets, brute force usernames and passwords, exploits, and a disassembler. blackarch-cracker
906inquisitor OSINT Gathering Tool for Companies and Organizations. blackarch-recon
907insanity Generate Payloads and Control Remote Machines . blackarch-exploitation
908instashell Multi-threaded Instagram Brute Forcer without password limit. blackarch-cracker
909intensio-obfuscator Obfuscate a python code 2 and 3. blackarch-misc
910intercepter-ng A next generation sniffer including a lot of features: capturing passwords/hashes, sniffing chat messages, performing man-in-the-middle attacks, etc. blackarch-windows
911interlace Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support. blackarch-networking
912interrogate A proof-of-concept tool for identification of cryptographic keys in binary material (regardless of target operating system), first and foremost for memory dump analysis and forensic usage. blackarch-forensic
913intersect Post-exploitation framework blackarch-automation
914intrace Traceroute-like application piggybacking on existing TCP connections blackarch-recon
915inundator An ids evasion tool, used to anonymously inundate intrusion detection logs with false positives in order to obfuscate a real attack. blackarch-spoof
916inurlbr Advanced search in the search engines - Inurl scanner, dorker, exploiter. blackarch-scanner
917inviteflood Flood a device with INVITE requests blackarch-dos
918inzider This is a tool that lists processes in your Windows system and the ports each one listen on. blackarch-windows
919iodine Tunnel IPv4 data through a DNS server blackarch-tunnel
920iosforensic iOS forensic tool https://www.owasp.org/index.php/Projects/OWASP_iOSForensic blackarch-forensic
921ip-https-tools Tools for the IP over HTTPS (IP-HTTPS) Tunneling Protocol. blackarch-tunnel
922ip-tracer Track and retrieve any ip address information. blackarch-recon
923ip2clue A small memory/CPU footprint daemon to lookup country (and other info) based on IP (v4 and v6). blackarch-recon
924ipaudit Monitors network activity on a network. blackarch-networking
925ipba2 IOS Backup Analyzer blackarch-forensic
926ipdecap Can decapsulate traffic encapsulated within GRE, IPIP, 6in4, ESP (ipsec) protocols, and can also remove IEEE 802.1Q (virtual lan) header. blackarch-networking
927iphoneanalyzer Allows you to forensically examine or recover date from in iOS device. blackarch-forensic
928ipmipwn IPMI cipher 0 attack tool. blackarch-cracker
929ipmitool Command-line interface to IPMI-enabled devices blackarch-networking
930ipobfuscator A simple tool to convert the IP to a DWORD IP. blackarch-misc
931ipscan A very fast IP address and port scanner. blackarch-scanner
932iptodomain This tool extract domains from IP address based in the information saved in virustotal. blackarch-recon
933iptv Search and brute force illegal iptv server. blackarch-scanner
934iputils Network monitoring tools, including ping blackarch-networking
935ipv4bypass Using IPv6 to Bypass Security. blackarch-networking
936ipv6toolkit SI6 Networks' IPv6 Toolkit blackarch-scanner
937ircsnapshot Tool to gather information from IRC servers. blackarch-recon
938irpas Internetwork Routing Protocol Attack Suite. blackarch-exploitation
939isf An exploitation framework based on Python. blackarch-exploitation
940isip Interactive sip toolkit for packet manipulations, sniffing, man in the middle attacks, fuzzing, simulating of dos attacks. blackarch-voip
941isme Scans a VOIP environment, adapts to enterprise VOIP, and exploits the possibilities of being connected directly to an IP Phone VLAN. blackarch-voip
942isr-form Simple html parsing tool that extracts all form related information and generates reports of the data. Allows for quick analyzing of data. blackarch-recon
943issniff Internet Session Sniffer. blackarch-sniffer
944ivre Network recon framework based on Nmap, Masscan, Zeek (Bro), Argus, Netflow,... blackarch-recon
945ivre-docs Network recon framework based on Nmap, Masscan, Zeek (Bro), Argus, Netflow,... (documentation) blackarch-recon
946ivre-web Network recon framework based on Nmap, Masscan, Zeek (Bro), Argus, Netflow,... (web application) blackarch-recon
947jaadas Joint Advanced Defect assEsment for android applications. blackarch-scanner
948jad Java decompiler blackarch-reversing
949jadx Command line and GUI tools to produce Java source code from Android Dex and APK files blackarch-decompiler
950jaidam Penetration testing tool that would take as input a list of domain names, scan them, determine if wordpress or joomla platform was used and finally check them automatically, for web vulnerabilities using two well-known open source tools, WPScan and Joomscan. blackarch-webapp
951jast Just Another Screenshot Tool. blackarch-webapp
952javasnoop A tool that lets you intercept methods, alter data and otherwise hack Java applications running on your computer blackarch-reversing
953jboss-autopwn A JBoss script for obtaining remote shell access. blackarch-exploitation
954jbrofuzz Web application protocol fuzzer that emerged from the needs of penetration testing. blackarch-fuzzer
955jbrute Open Source Security tool to audit hashed passwords. blackarch-cracker
956jcrack A utility to create dictionary files that will crack the default passwords of select wireless gateways blackarch-wireless
957jd-gui A standalone graphical utility that displays Java source codes of .class files. blackarch-decompiler
958jeangrey A tool to perform differential fault analysis attacks (DFA). blackarch-cracker
959jeb-android Android decompiler. blackarch-reversing
960jeb-arm Arm decompiler. blackarch-reversing
961jeb-intel Intel decompiler. blackarch-reversing
962jeb-mips Mips decompiler. blackarch-reversing
963jeb-webasm WebAssembly decompiler. blackarch-reversing
964jexboss Jboss verify and Exploitation Tool. blackarch-webapp
965jhead EXIF JPEG info parser and thumbnail remover blackarch-defensive
966jnetmap A network monitor of sorts blackarch-networking
967john John the Ripper password cracker blackarch-cracker
968johnny GUI for John the Ripper. blackarch-cracker
969jok3r Network and Web Pentest Framework. blackarch-webapp
970jomplug This php script fingerprints a given Joomla system and then uses Packet Storm's archive to check for bugs related to the installed components. blackarch-webapp
971jooforce A Joomla password brute force tester. blackarch-webapp
972joomlascan Joomla scanner scans for known vulnerable remote file inclusion paths and files. blackarch-webapp
973joomlavs A black box, Ruby powered, Joomla vulnerability scanner. blackarch-webapp
974joomscan Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla! web site. blackarch-webapp
975jpegdump Tool to analyzse JPEG images Reads binary files and parses the JPEG markers inside them. blackarch-binary
976jpexs-decompiler JPEXS Free Flash Decompiler. blackarch-decompiler
977jshell Get a JavaScript shell with XSS. blackarch-webapp
978jsparser Parse javascript using Tornado and and JSBeautifier to discover interesting enpoints. blackarch-webapp
979jsql-injection A Java application for automatic SQL database injection. blackarch-webapp
980jstillery Advanced JavaScript Deobfuscation via Partial Evaluation. blackarch-webapp
981juicy-potato A sugared version of RottenPotatoNG, with a bit of juice. blackarch-windows
982junkie A modular packet sniffer and analyzer. blackarch-sniffer
983justdecompile The decompilation engine of JustDecompile. blackarch-windows
984jwscan Scanner for Jar to EXE wrapper like Launch4j, Exe4j, JSmooth, Jar2Exe. blackarch-reversing
985jwt-cracker JWT brute force cracker written in C. blackarch-cracker
986jynx2 An expansion of the original Jynx LD_PRELOAD rootkit blackarch-backdoor
987kacak Tools for penetration testers that can enumerate which users logged on windows system. blackarch-recon
988kadimus LFI Scan & Exploit Tool. blackarch-webapp
989kalibrate-rtl Fork of http://thre.at/kalibrate/ for use with rtl-sdr devices. blackarch-mobile
990kamerka Build interactive map of cameras from Shodan. blackarch-recon
991katana A framework that seekss to unite general auditing tools, which are general pentesting tools (Network,Web,Desktop and others). blackarch-exploitation
992katsnoop Utility that sniffs HTTP Basic Authentication information and prints the base64 decoded form. blackarch-sniffer
993kautilya Pwnage with Human Interface Devices using Teensy++2.0 and Teensy 3.0 devices. blackarch-hardware
994keimpx Tool to verify the usefulness of credentials across a network over SMB. blackarch-cracker
995kerbcrack Kerberos sniffer and cracker for Windows. blackarch-windows
996kernelpop Kernel privilege escalation enumeration and exploitation framework. blackarch-exploitation
997keye Recon tool detecting changes of websites based on content-length differences. blackarch-recon
998khc A small tool designed to recover hashed known_hosts fiels back to their plain-text equivalents. blackarch-cracker
999kickthemout Kick devices off your network by performing an ARP Spoof attack. blackarch-networking
1000killcast Manipulate Chromecast Devices in your Network. blackarch-exploitation
1001killerbee Framework and tools for exploiting ZigBee and IEEE 802.15.4 networks. blackarch-exploitation
1002kimi Script to generate malicious debian packages (debain trojans). blackarch-backdoor
1003kippo A medium interaction SSH honeypot designed to log brute force attacks and most importantly, the entire shell interaction by the attacker. blackarch-honeypot
1004kismet-earth Various scripts to convert kismet logs to kml file to be used in Google Earth. blackarch-wireless
1005kismet2earth A set of utilities that convert from Kismet logs to Google Earth .kml format blackarch-wireless
1006kismon GUI client for kismet (wireless scanner/sniffer/monitor). blackarch-wireless
1007kitty-framework Fuzzing framework written in python. blackarch-fuzzer
1008klogger A keystroke logger for the NT-series of Windows. blackarch-windows
1009knock Subdomain scanner. blackarch-scanner
1010knxmap KNXnet/IP scanning and auditing tool for KNX home automation installations. blackarch-scanner
1011koadic A Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. blackarch-automation
1012kolkata A web application fingerprinting engine written in Perl that combines cryptography with IDS evasion. blackarch-webapp
1013konan Advanced Web Application Dir Scanner. blackarch-webapp
1014kraken A project to encrypt A5/1 GSM signaling using a Time/Memory Tradeoff Attack. blackarch-crypto
1015krbrelayx Kerberos unconstrained delegation abuse toolkit. blackarch-scanner
1016kube-hunter Hunt for security weaknesses in Kubernetes clusters. blackarch-scanner
1017kubolt Utility for scanning public kubernetes clusters. blackarch-webapp
1018kwetza Python script to inject existing Android applications with a Meterpreter payload. blackarch-backdoor
1019l0l The Exploit Development Kit. blackarch-exploitation
1020laf Login Area Finder: scans host/s for login panels. blackarch-scanner
1021lanmap2 Passive network mapping tool. blackarch-recon
1022lans A Multithreaded asynchronous packet parsing/injecting arp spoofer. blackarch-spoof
1023latd A LAT terminal daemon for Linux and BSD. blackarch-networking
1024laudanum A collection of injectable files, designed to be used in a pentest when SQL injection flaws are found and are in multiple languages for different environments. blackarch-misc
1025lazagne An open source application used to retrieve lots of passwords stored on a local computer. blackarch-forensic
1026lazydroid Tool written as a bash script to facilitate some aspects of an Android Assessment blackarch-mobile
1027lbd Load Balancing detector, blackarch-recon
1028lbmap Proof of concept scripts for advanced web application fingerprinting, presented at OWASP AppSecAsia 2012. blackarch-fingerprint
1029ld-shatner ld-linux code injector. blackarch-backdoor
1030ldap-brute A semi fast tool to bruteforce values of LDAP injections over HTTP. blackarch-cracker
1031ldapdomaindump Active Directory information dumper via LDAP. blackarch-scanner
1032ldapenum Enumerate domain controllers using LDAP. blackarch-recon
1033ldapscripts Simple shell scripts to handle POSIX entries in an LDAP directory. blackarch-automation
1034ldeep In-depth ldap enumeration utility. blackarch-recon
1035leaklooker Find open databases with Shodan. blackarch-scanner
1036leena Symbolic execution engine for JavaScript blackarch-binary
1037leo Literate programmer's editor, outliner, and project manager. blackarch-misc
1038leroy-jenkins A python tool that will allow remote execution of commands on a Jenkins server and its nodes. blackarch-exploitation
1039letmefuckit-scanner Scanner and Exploit Magento. blackarch-scanner
1040leviathan A mass audit toolkit which has wide range service discovery, brute force, SQL injection detection and running custom exploit capabilities. blackarch-scanner
1041levye A brute force tool which is support sshkey, vnckey, rdp, openvpn. blackarch-cracker
1042lfi-autopwn A Perl script to try to gain code execution on a remote server via LFI blackarch-exploitation
1043lfi-exploiter This perl script leverages /proc/self/environ to attempt getting code execution out of a local file inclusion vulnerability.. blackarch-webapp
1044lfi-fuzzploit A simple tool to help in the fuzzing for, finding, and exploiting of local file inclusion vulnerabilities in Linux-based PHP applications. blackarch-webapp
1045lfi-image-helper A simple script to infect images with PHP Backdoors for local file inclusion attacks. blackarch-webapp
1046lfi-scanner This is a simple perl script that enumerates local file inclusion attempts when given a specific target. blackarch-scanner
1047lfi-sploiter This tool helps you exploit LFI (Local File Inclusion) vulnerabilities. Post discovery, simply pass the affected URL and vulnerable parameter to this tool. You can also use this tool to scan a URL for LFI vulnerabilities. blackarch-webapp
1048lfifreak A unique automated LFi Exploiter with Bind/Reverse Shells. blackarch-webapp
1049lfimap This script is used to take the highest beneficts of the local file include vulnerability in a webserver. blackarch-webapp
1050lfisuite Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner. blackarch-scanner
1051lfle Recover event log entries from an image by heurisitically looking for record structures. blackarch-forensic
1052lft A layer four traceroute implementing numerous other features. blackarch-recon
1053lhf A modular recon tool for pentesting. blackarch-recon
1054libbde A library to access the BitLocker Drive Encryption (BDE) format. blackarch-crypto
1055libdisasm A disassembler library. blackarch-disassembler
1056libosmocore Collection of common code used in various sub-projects inside the Osmocom family of projects. blackarch-radio
1057libpst Outlook .pst file converter blackarch-misc
1058lief Library to Instrument Executable Formats. blackarch-disassembler
1059liffy A Local File Inclusion Exploitation tool. blackarch-webapp
1060lightbulb Python framework for auditing web applications firewalls. blackarch-webapp
1061limeaide Remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local host. blackarch-forensic
1062linenum Scripted Local Linux Enumeration & Privilege Escalation Checks blackarch-scanner
1063linikatz Tool to attack AD on UNIX. blackarch-automation
1064linkfinder Discovers endpoint and their parameters in JavaScript files. blackarch-webapp
1065linset Evil Twin Attack Bash script - An automated WPA/WPA2 hacker. blackarch-automation
1066linux-exploit-suggester A Perl script that tries to suggest exploits based OS version number. blackarch-recon
1067linux-exploit-suggester.sh Linux privilege escalation auditing tool. blackarch-recon
1068linux-inject Tool for injecting a shared object into a Linux process. blackarch-backdoor
1069lisa.py An Exploit Dev Swiss Army Knife. blackarch-exploitation
1070list-urls Extracts links from webpage. blackarch-webapp
1071littleblackbox Penetration testing tool, search in a collection of thousands of private SSL keys extracted from various embedded devices. blackarch-scanner
1072littlebrother OSINT tool to get informations on French, Belgian and Swizerland people. blackarch-recon
1073lldb Next generation, high-performance debugger blackarch-debugger
1074loadlibrary Porting Windows Dynamic Link Libraries to Linux. blackarch-binary
1075locasploit Local enumeration and exploitation framework. blackarch-scanner
1076lodowep Lodowep is a tool for analyzing password strength of accounts on a Lotus Domino webserver system. blackarch-cracker
1077logkeys A GNU/Linux keylogger that worked. blackarch-keylogger
1078loic An open source network stress tool for Windows. blackarch-networking
1079loki-scanner Simple IOC and Incident Response Scanner. blackarch-forensic
1080lolbas Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts). blackarch-windows
1081loot Sensitive information extraction tool. blackarch-recon
1082lorcon Generic library for injecting 802.11 frames blackarch-wireless
1083lorg Apache Logfile Security Analyzer. blackarch-defensive
1084lotophagi a relatively compact Perl script designed to scan remote hosts for default (or common) Lotus NSF and BOX databases. blackarch-scanner
1085lsrtunnel Spoofs connections using source routed packets. blackarch-spoof
1086lte-cell-scanner LTE SDR cell scanner optimized to work with very low performance RF front ends (8bit A/D, 20dB noise figure). blackarch-scanner
1087luksipc A tool to convert unencrypted block devices to encrypted LUKS devices in-place. blackarch-crypto
1088lunar A UNIX security auditing tool based on several security frameworks. blackarch-scanner
1089luyten An Open Source Java Decompiler Gui for Procyon. blackarch-decompiler
1090lynis Security and system auditing tool to harden Unix/Linux systems blackarch-scanner
1091lyricpass Tool to generate wordlists based on lyrics. blackarch-automation
1092mac-robber A digital investigation tool that collects data from allocated files in a mounted file system. blackarch-forensic
1093macchanger A small utility to change your NIC's MAC address blackarch-networking
1094machinae A tool for collecting intelligence from public sites/feeds about various security-related pieces of data. blackarch-recon
1095maclookup Lookup MAC addresses in the IEEE MA-L/OUI public listing. blackarch-networking
1096magescan Scan a Magento site for information. blackarch-webapp
1097magicrescue Find and recover deleted files on block devices blackarch-forensic
1098magictree A penetration tester productivity tool designed to allow easy and straightforward data consolidation, querying, external command execution and report generation blackarch-misc
1099mail-crawl Tool to harvest emails from website. blackarch-recon
1100make-pdf This tool will embed javascript inside a PDF document. blackarch-forensic
1101maketh A packet generator that supports forging ARP, IP, TCP, UDP, ICMP and the ethernet header as well. blackarch-networking
1102malboxes Builds malware analysis Windows VMs so that you don't have to. blackarch-malware
1103malcom Analyze a system's network communication using graphical representations of network traffic. blackarch-networking
1104malheur A tool for the automatic analyze of malware behavior. blackarch-forensic
1105malice VirusTotal Wanna Be - Now with 100% more Hipster. blackarch-defensive
1106maligno An open source penetration testing tool written in python, that serves Metasploit payloads. It generates shellcode with msfvenom and transmits it over HTTP or HTTPS. blackarch-scanner
1107malmon Hosting exploit/backdoor detection daemon. blackarch-defensive
1108malscan A Simple PE File Heuristics Scanner. blackarch-malware
1109maltego An open source intelligence and forensics application, enabling to easily gather information about DNS, domains, IP addresses, websites, persons, etc. blackarch-forensic
1110maltrail Malicious traffic detection system. blackarch-defensive
1111maltrieve Originated as a fork of mwcrawler. It retrieves malware directly from the sources as listed at a number of sites. blackarch-malware
1112malware-check-tool Python script that detects malicious files via checking md5 hashes from an offline set or via the virustotal site. It has http proxy support and an update feature. blackarch-malware
1113malwareanalyser A freeware tool to perform static and dynamic analysis on malware. blackarch-windows
1114malwaredetect Submits a file's SHA1 sum to VirusTotal to determine whether it is a known piece of malware blackarch-forensic
1115malwasm Offline debugger for malware's reverse engineering. blackarch-reversing
1116malybuzz A Python tool focused in discovering programming faults in network software. blackarch-fuzzer
1117mana A toolkit for rogue access point (evilAP) attacks first presented at Defcon 22. blackarch-wireless
1118mando.me Web Command Injection Tool. blackarch-webapp
1119manticore Symbolic execution tool. blackarch-binary
1120mara-framework A Mobile Application Reverse engineering and Analysis Framework. blackarch-mobile
1121marc4dasm This python-based tool is a disassembler for the Atmel MARC4 (a 4 bit Harvard micro). blackarch-disassembler
1122maryam Full-featured Web Identification framework written in Python. blackarch-scanner
1123maskprocessor A High-Performance word generator with a per-position configurable charset. blackarch-automation
1124massbleed SSL Vulnerability Scanner. blackarch-recon
1125masscan TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes blackarch-scanner
1126masscan-automation Masscan integrated with Shodan API. blackarch-automation
1127massdns A high-performance DNS stub resolver in C. blackarch-networking
1128massexpconsole A collection of tools and exploits with a cli ui for mass exploitation. blackarch-automation
1129mat Metadata Anonymisation Toolkit composed of a GUI application, a CLI application and a library. blackarch-defensive
1130mat2 A metadata removal tool, supporting a wide range of commonly used file formats. blackarch-defensive
1131matahari A reverse HTTP shell to execute commands on remote machines behind firewalls. blackarch-tunnel
1132matroschka Python steganography tool to hide images or text in images. blackarch-stego
1133mausezahn A free fast traffic generator written in C which allows you to send nearly every possible and impossible packet. blackarch-dos
1134mbenum Queries the master browser for whatever information it has registered. blackarch-windows
1135mboxgrep A small, non-interactive utility that scans mail folders for messages matching regular expressions. It does matching against basic and extended POSIX regular expressions, and reads and writes a variety of mailbox formats. blackarch-forensic
1136mdcrack MD4/MD5/NTLM1 hash cracker blackarch-cracker
1137mdk3 WLAN penetration tool blackarch-wireless
1138mdk4 Proof-of-Concept tool to exploit common IEEE 802.11 protocol weaknesses. blackarch-wireless
1139mdns-recon An mDNS recon tool written in Python. blackarch-recon
1140meanalyzer Intel Engine Firmware Analysis Tool. blackarch-firmware
1141medusa Speedy, massively parallel and modular login brute-forcer for network blackarch-cracker
1142meg Fetch many paths for many hosts - without killing the hosts. blackarch-webapp
1143melkor An ELF fuzzer that mutates the existing data in an ELF sample given to create orcs (malformed ELFs), however, it does not change values randomly (dumb fuzzing), instead, it fuzzes certain metadata with semi-valid values through the use of fuzzing rules (knowledge base). blackarch-fuzzer
1144memdump Dumps system memory to stdout, skipping over holes in memory maps. blackarch-forensic
1145memfetch Dumps any userspace process memory without affecting its execution. blackarch-forensic
1146memimager Performs a memory dump using NtSystemDebugControl. blackarch-windows
1147mentalist Graphical tool for custom wordlist generation. blackarch-automation
1148merlin-server Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. blackarch-automation
1149metacoretex MetaCoretex is an entirely JAVA vulnerability scanning framework for databases. blackarch-database
1150metagoofil An information gathering tool designed for extracting metadata of public documents. blackarch-recon
1151metame A simple metamorphic code engine for arbitrary executables. blackarch-binary
1152metasploit Advanced open-source platform for developing, testing, and using exploit code blackarch-exploitation
1153metasploit-autopwn db_autopwn plugin of metasploit. blackarch-automation
1154meterssh A way to take shellcode, inject it into memory then tunnel whatever port you want to over SSH to mask any type of communications as a normal SSH connection. blackarch-backdoor
1155metoscan Tool for scanning the HTTP methods supported by a webserver. It works by testing a URL and checking the responses for the different requests. blackarch-webapp
1156mfcuk MIFARE Classic Universal toolKit. blackarch-wireless
1157mfsniffer A python script for capturing unencrypted TSO login credentials. blackarch-sniffer
1158mibble An open-source SNMP MIB parser (or SMI parser) written in Java. It can be used to read SNMP MIB files as well as simple ASN.1 files. blackarch-misc
1159microsploit Fast and easy create backdoor office exploitation using module metasploit packet, Microsoft Office, Open Office, Macro attack, Buffer Overflow. blackarch-backdoor
1160middler A Man in the Middle tool to demonstrate protocol middling attacks. blackarch-networking
1161mikrotik-npk Python tools for manipulating Mikrotik NPK format. blackarch-reversing
1162mimipenguin A tool to dump the login password from the current linux user. blackarch-forensic
1163mingsweeper A network reconnaissance tool designed to facilitate large address space,high speed node discovery and identification. blackarch-windows
1164minimodem A command-line program which decodes (or generates) audio modem tones at any specified baud rate, using various framing protocols. blackarch-misc
1165minimysqlator A multi-platform application used to audit web sites in order to discover and exploit SQL injection vulnerabilities. blackarch-exploitation
1166miranda-upnp A Python-based Universal Plug-N-Play client application designed to discover, query and interact with UPNP devices blackarch-exploitation
1167missidentify A program to find Win32 applications. blackarch-recon
1168missionplanner A GroundControl Station for Ardupilot. blackarch-drone
1169mitm-relay Hackish way to intercept and modify non-HTTP protocols through Burp & others. blackarch-proxy
1170mitmap A python program to create a fake AP and sniff data. blackarch-wireless
1171mitmap-old Shell Script for launching a Fake AP with karma functionality and launches ettercap for packet capture and traffic manipulation. blackarch-automation
1172mitmer A man-in-the-middle and phishing attack tool that steals the victim's credentials of some web services like Facebook. blackarch-sniffer
1173mitmf A Framework for Man-In-The-Middle attacks written in Python. blackarch-exploitation
1174mitmproxy SSL-capable man-in-the-middle HTTP proxy blackarch-proxy
1175mkbrutus Password bruteforcer for MikroTik devices or boxes running RouterOS. blackarch-cracker
1176mobiusft An open-source forensic framework written in Python/GTK that manages cases and case items, providing an abstract interface for developing extensions. blackarch-forensic
1177mobsf An intelligent, all-in-one open source mobile application (Android/iOS) automated pen-testing framework capable of performing static, dynamic analysis and web API testing. blackarch-mobile
1178modscan A new tool designed to map a SCADA MODBUS TCP based network. blackarch-scanner
1179moloch An open source large scale IPv4 full PCAP capturing, indexing and database system. blackarch-networking
1180mongoaudit A powerful MongoDB auditing and pentesting tool . blackarch-scanner
1181monocle A local network host discovery tool. In passive mode, it will listen for ARP request and reply packets. In active mode, it will send ARP requests to the specific IP range. The results are a list of IP and MAC addresses present on the local network. blackarch-recon
1182mooscan A scanner for Moodle LMS. blackarch-webapp
1183morpheus Automated Ettercap TCP/IP Hijacking Tool. blackarch-automation
1184morxbook A password cracking tool written in perl to perform a dictionary-based attack on a specific Facebook user through HTTPS. blackarch-cracker
1185morxbrute A customizable HTTP dictionary-based password cracking tool written in Perl. blackarch-cracker
1186morxbtcrack Single Bitcoin private key cracking tool released. blackarch-cracker
1187morxcoinpwn Mass Bitcoin private keys brute forcing/Take over tool released. blackarch-cracker
1188morxcrack A cracking tool written in Perl to perform a dictionary-based attack on various hashing algorithm and CMS salted-passwords. blackarch-cracker
1189morxkeyfmt Read a private key from stdin and output formatted data values. blackarch-crypto
1190morxtraversal Path Traversal checking tool. blackarch-webapp
1191morxtunel Network Tunneling using TUN/TAP interfaces over TCP tool. blackarch-tunnel
1192mosca Static analysis tool to find bugs like a grep unix command. blackarch-code-audit
1193mosquito XSS exploitation tool - access victims through HTTP proxy. blackarch-exploitation
1194mots Man on the Side Attack - experimental packet injection and detection. blackarch-sniffer
1195motsa-dns-spoofing ManOnTheSideAttack-DNS Spoofing. blackarch-spoof
1196mousejack Wireless mouse/keyboard attack with replay/transmit poc. blackarch-wireless
1197mp3nema A tool aimed at analyzing and capturing data that is hidden between frames in an MP3 file or stream, otherwise noted as "out of band" data. blackarch-forensic
1198mptcp A tool for manipulation of raw packets that allows a large number of options. blackarch-networking
1199mptcp-abuse A collection of tools and resources to explore MPTCP on your network. Initially released at Black Hat USA 2014. blackarch-networking
1200mrsip SIP-Based Audit and Attack Tool. blackarch-voip
1201mrtparse A module to read and analyze the MRT format data. blackarch-misc
1202ms-sys A tool to write Win9x-.. master boot records (mbr) under linux - RTM! blackarch-backdoor
1203msf-mpc Msfvenom payload creator. blackarch-automation
1204msfdb Manage the metasploit framework database. blackarch-misc
1205msfenum A Metasploit auto auxiliary script. blackarch-automation
1206mssqlscan A small multi-threaded tool that scans for Microsoft SQL Servers. blackarch-scanner
1207msvpwn Bypass Windows' authentication via binary patching. blackarch-windows
1208mtr Combines the functionality of traceroute and ping into one tool (CLI version) blackarch-networking
1209mtscan Mikrotik RouterOS wireless scanner. blackarch-wireless
1210multiinjector Automatic SQL injection utility using a lsit of URI addresses to test parameter manipulation. blackarch-webapp
1211multimac Multiple MACs on an adapter blackarch-spoof
1212multimon-ng An sdr decoder, supports pocsag, ufsk, clipfsk, afsk, hapn, fsk, dtmf, zvei. blackarch-radio
1213multiscanner Modular file scanning/analysis framework. blackarch-scanner
1214multitun Tunnel arbitrary traffic through an innocuous WebSocket. blackarch-tunnel
1215mutator This project aims to be a wordlist mutator with hormones, which means that some mutations will be applied to the result of the ones that have been already done, resulting in something like: corporation -> C0rp0r4t10n_2012 blackarch-automation
1216mwebfp Mass Web Fingerprinter. blackarch-fingerprint
1217mxtract Memory Extractor & Analyzer. blackarch-forensic
1218mybff A Brute Force Framework. blackarch-cracker
1219mylg Network Diagnostic Tool. blackarch-networking
1220mysql2sqlite Converts a mysqldump file into a Sqlite 3 compatible file. blackarch-database
1221nacker A tool to circumvent 802.1x Network Access Control on a wired LAN. blackarch-networking
1222naft Network Appliance Forensic Toolkit. blackarch-forensic
1223nasnum Script to enumerate network attached storages. blackarch-recon
1224nbname Decodes and displays all NetBIOS name packets it receives on UDP port 137 and more! blackarch-windows
1225nbnspoof NBNSpoof - NetBIOS Name Service Spoofer blackarch-spoof
1226nbtenum A utility for Windows that can be used to enumerate NetBIOS information from one host or a range of hosts. blackarch-windows
1227nbtool Some tools for NetBIOS and DNS investigation, attacks, and communication. blackarch-networking
1228nbtscan NBTscan is a program for scanning IP networks for NetBIOS name information. blackarch-scanner
1229ncpfs Allows you to mount volumes of NetWare servers under Linux. blackarch-networking
1230ncrack High-speed network authentication cracking tool blackarch-cracker
1231necromant Python Script that search unused Virtual Hosts in Web Servers. blackarch-recon
1232needle The iOS Security Testing Framework. blackarch-mobile
1233neglected Facebook CDN Photo Resolver. blackarch-recon
1234neighbor-cache-fingerprinter An ARP based Operating System version scanner. blackarch-fingerprint
1235nemesis A command-line network packet crafting and injection utility. blackarch-networking
1236neo-regeorg Improved version of reGeorg, HTTP tunneling pivot tool blackarch-tunnel
1237net-creds Sniffs sensitive data from interface or pcap. blackarch-sniffer
1238netactview A graphical network connections viewer similar in functionality to netstat. blackarch-networking
1239netattack Python script to scan and attack wireless networks. blackarch-wireless
1240netbios-share-scanner This tool could be used to check windows workstations and servers if they have accessible shared resources. blackarch-scanner
1241netbus NetBus remote adminsitration tool blackarch-windows
1242netcommander An easy-to-use arp spoofing tool. blackarch-spoof
1243netcon A network connection establishment and management script. blackarch-networking
1244netdiscover An active/passive address reconnaissance tool, mainly developed for those wireless networks without dhcp server, when you are wardriving. It can be also used on hub/switched networks. blackarch-recon
1245netkit-bsd-finger BSD-finger ported to Linux. blackarch-recon
1246netkit-rwho Remote who client and server (with Debian patches). blackarch-misc
1247netmap Can be used to make a graphical representation of the surounding network. blackarch-networking
1248netmask Helps determine network masks blackarch-recon
1249netreconn A collection of network scan/recon tools that are relatively small compared to their larger cousins. blackarch-networking
1250netripper Smart traffic sniffing for penetration testers. blackarch-windows
1251netscan Tcp/Udp/Tor port scanner with: synpacket, connect TCP/UDP and socks5 (tor connection). blackarch-scanner
1252netscan2 Active / passive network scanner. blackarch-scanner
1253netsed Small and handful utility design to alter the contents of packets forwarded thru network in real time. blackarch-networking
1254netsniff-ng High performance Linux network sniffer for packet inspection blackarch-sniffer
1255netstumbler Well-known wireless AP scanner and sniffer. blackarch-windows
1256network-app-stress-tester Network Application Stress Testing Yammer. blackarch-dos
1257networkmap Post-exploitation network mapper. blackarch-networking
1258networkminer A Network Forensic Analysis Tool for advanced Network Traffic Analysis, sniffer and packet analyzer. blackarch-forensic
1259netzob An open source tool for reverse engineering, traffic generation and fuzzing of communication protocols. blackarch-reversing
1260nextnet Pivot point discovery tool. blackarch-networking
1261nfcutils Provides a simple 'lsnfc' command that list tags which are in your NFC device field blackarch-nfc
1262nfdump A set of tools to collect and process netflow data. blackarch-networking
1263nfex A tool for extracting files from the network in real-time or post-capture from an offline tcpdump pcap savefile. blackarch-forensic
1264nfspy A Python library for automating the falsification of NFS credentials when mounting an NFS share. blackarch-automation
1265nfsshell Userland NFS command tool. blackarch-automation
1266ngrep A grep-like utility that allows you to search for network packets on an interface. blackarch-networking
1267ngrok A tunneling, reverse proxy for developing and understanding networked, HTTP services. blackarch-tunnel
1268nield A tool to receive notifications from kernel through netlink socket, and generate logs related to interfaces, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), routing, FIB rules, traffic control. blackarch-networking
1269nikto A web server scanner which performs comprehensive tests against web servers for multiple items blackarch-scanner
1270nili Tool for Network Scan, Man in the Middle, Protocol Reverse Engineering and Fuzzing. blackarch-scanner
1271nimbostratus Tools for fingerprintinging and exploiting Amazon cloud infrastructures. blackarch-fingerprint
1272nipe A script to make Tor Network your default gateway. blackarch-defensive
1273nipper Network Infrastructure Parser blackarch-networking
1274nirsoft Unique collection of small and useful freeware utilities. blackarch-windows
1275nishang Using PowerShell for Penetration Testing. blackarch-windows
1276nkiller2 A TCP exhaustion/stressing tool. blackarch-dos
1277nmap Utility for network discovery and security auditing blackarch-scanner
1278nmap-parse-output Converts/manipulates/extracts data from a nmap scan output. blackarch-misc
1279nmbscan Tool to scan the shares of a SMB/NetBIOS network, using the NMB/SMB/NetBIOS protocols. blackarch-scanner
1280nohidy The system admins best friend, multi platform auditing tool. blackarch-recon
1281nomorexor Tool to help guess a files 256 byte XOR key by using frequency analysis. blackarch-crypto
1282noriben Portable, Simple, Malware Analysis Sandbox. blackarch-malware
1283nosqlattack Python tool to automate exploit MongoDB server IP on Internet anddisclose the database data by MongoDB default configuration weaknesses and injection attacks. blackarch-automation
1284nosqlmap Automated Mongo database and NoSQL web application exploitation tool blackarch-webapp
1285notspikefile A Linux based file format fuzzing tool blackarch-fuzzer
1286novahot A webshell framework for penetration testers. blackarch-webapp
1287nsdtool A netgear switch discovery tool. It contains some extra features like bruteoforce and setting a new password. blackarch-networking
1288nsearch Minimal script to help find script into the nse database. blackarch-misc
1289nsec3map A tool to enumerate the resource records of a DNS zone using its DNSSEC NSEC or NSEC3 chain. blackarch-scanner
1290nsec3walker Enumerates domain names using DNSSEC blackarch-recon
1291nsia A website scanner that monitors websites in realtime in order to detect defacements, compliance violations, exploits, sensitive information disclosure and other issues. blackarch-scanner
1292nsntrace Perform network trace of a single process by using network namespaces. blackarch-sniffer
1293nsoq A Network Security Tool for packet manipulation that allows a large number of options. blackarch-networking
1294ntds-decode This application dumps LM and NTLM hashes from active accounts stored in an Active Directory database. blackarch-windows
1295ntdsxtract Active Directory forensic framework. blackarch-forensic
1296ntp-fingerprint An active fingerprinting utility specifically designed to identify the OS the NTP server is running on. blackarch-fingerprint
1297ntp-ip-enum Script to pull addresses from a NTP server using the monlist command. Can also output Maltego resultset. blackarch-recon
1298ntpdos Create a DDOS attack using NTP servers. blackarch-dos
1299nullinux Tool that can be used to enumerate OS information, domain information, shares, directories, and users through SMB null sessions. blackarch-recon
1300nxcrypt NXcrypt - python backdoor framework. blackarch-backdoor
1301o-saft A tool to show informations about SSL certificate and tests the SSL connection according given list of ciphers and various SSL configurations. blackarch-scanner
1302oat A toolkit that could be used to audit security within Oracle database servers. blackarch-fuzzer
1303obevilion Another archive cracker created in python cracking [zip/7z/rar].
1304obexstress Script for testing remote OBEX service for some potential vulnerabilities. blackarch-bluetooth
1305obfs4proxy A pluggable transport proxy written in Go. blackarch-proxy
1306obfsproxy A pluggable transport proxy written in Python blackarch-proxy
1307objdump2shellcode A tool I have found incredibly useful whenever creating custom shellcode. blackarch-binary
1308objection Instrumented Mobile Pentest Framework. blackarch-mobile
1309oclhashcat Worlds fastest WPA cracker with dictionary mutation engine. blackarch-cracker
1310ocs Compact mass scanner for Cisco routers with default telnet/enable passwords. blackarch-scanner
1311ofp-sniffer An OpenFlow sniffer to help network troubleshooting in production networks. blackarch-sniffer
1312ohrwurm A small and simple RTP fuzzer. blackarch-fuzzer
1313okadminfinder Tool to find admin panels / admin login pages. blackarch-webapp
1314oledump Analyze OLE files (Compound File Binary Format). These files contain streams of data. This tool allows you to analyze these streams. blackarch-binary
1315oletools Tools to analyze Microsoft OLE2 files. blackarch-binary
1316ollydbg A 32-bit assembler-level analysing debugger. blackarch-debugger
1317omen Ordered Markov ENumerator - Password Guesser. blackarch-cracker
1318omnibus OSINT tool for intelligence collection, research and artifact management. blackarch-recon
1319omnihash Hash files, strings, input streams and network resources in various common algorithms simultaneously. blackarch-crypto
1320one-lin3r Gives you one-liners that aids in penetration testing and more. blackarch-misc
1321onesixtyone An SNMP scanner that sends multiple SNMP requests to multiple IP addresses blackarch-cracker
1322onetwopunch Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans. blackarch-scanner
1323onioff An onion url inspector for inspecting deep web links. blackarch-recon
1324onionscan Scan Onion Services for Security Issues. blackarch-scanner
1325onionshare Securely and anonymously share a file of any size. blackarch-misc
1326opendoor OWASP WEB Directory Scanner. blackarch-webapp
1327openpuff Yet not another steganography SW. blackarch-stego
1328openscap Open Source Security Compliance Solution. blackarch-automation
1329openstego A tool implemented in Java for generic steganography, with support for password-based encryption of the data. blackarch-crypto
1330opensvp A security tool implementing "attacks" to be able to the resistance of firewall to protocol level attack. blackarch-exploitation
1331openvas Vulnerability scanning Daemon blackarch-scanner
1332operative Framework based on fingerprint action, this tool is used for get information on a website or a enterprise target with multiple modules (Viadeo search,Linkedin search, Reverse email whois, Reverse ip whois, SQL file forensics ...). blackarch-fingerprint
1333ophcrack Windows password cracker based on rainbow tables blackarch-cracker
1334orakelcrackert This tool can crack passwords which are encrypted using Oracle's latest SHA1 based password protection algorithm. blackarch-windows
1335origami Aims at providing a scripting tool to generate and analyze malicious PDF files. blackarch-malware
1336oscanner An Oracle assessment framework developed in Java. blackarch-fuzzer
1337osfooler-ng Prevents remote active/passive OS fingerprinting by tools like nmap or p0f. blackarch-defensive
1338osint-spy Performs OSINT scan on email/domain/ip_address/organization. blackarch-recon
1339osinterator Open Source Toolkit for Open Source Intelligence Gathering. blackarch-recon
1340osrframework A project focused on providing API and tools to perform more accurate online researches. blackarch-recon
1341ostinato An open-source, cross-platform packet/traffic generator and analyzer with a friendly GUI. It aims to be "Wireshark in Reverse" and thus become complementary to Wireshark. blackarch-sniffer
1342osueta A simple Python script to exploit the OpenSSH User Enumeration Timing Attack. blackarch-exploitation
1343otori A python-based toolbox intended to allow useful exploitation of XML external entity ("XXE") vulnerabilities. blackarch-exploitation
1344outguess A universal steganographic tool. blackarch-crypto
1345outlook-webapp-brute Microsoft Outlook WebAPP Brute. blackarch-cracker
1346owabf Outlook Web Access bruteforcer tool. blackarch-cracker
1347owasp-bywaf A web application penetration testing framework (WAPTF). blackarch-webapp
1348owasp-zsc Shellcode/Obfuscate Code Generator. blackarch-exploitation
1349owtf The Offensive (Web) Testing Framework. blackarch-webapp
1350p0f Purely passive TCP/IP traffic fingerprinting tool blackarch-fingerprint
1351pack Password Analysis and Cracking Kit blackarch-cracker
1352packer tool for creating identical machine images for multiple platforms from a single source configuration blackarch-binary
1353packerid Script which uses a PEiD database to identify which packer (if any) is being used by a binary. blackarch-binary
1354packet-o-matic A real time packet processor. Reads the packet from an input module, match the packet using rules and connection tracking information and then send it to a target module. blackarch-networking
1355packeth Linux GUI packet generator tool for ethernet blackarch-networking
1356packetq A tool that provides a basic SQL-frontend to PCAP-files. blackarch-networking
1357packetsender An open source utility to allow sending and receiving TCP and UDP packets. blackarch-networking
1358packit A network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic. blackarch-networking
1359pacumen Packet Acumen - Analyse encrypted network traffic and more (side-channel attacks). blackarch-crypto
1360padbuster Automated script for performing Padding Oracle attacks. blackarch-exploitation
1361pafish A demonstration tool that employs several techniques to detect sandboxes and analysis environments in the same way as malware families do. blackarch-windows
1362paketto Advanced TCP/IP Toolkit. blackarch-scanner
1363panhunt Searches for credit card numbers (PANs) in directories. blackarch-scanner
1364panoptic A tool that automates the process of search and retrieval of content for common log and config files through LFI vulnerability. blackarch-automation
1365pappy-proxy An intercepting proxy for web application testing. blackarch-webapp
1366parameth This tool can be used to brute discover GET and POST parameters. blackarch-webapp
1367parampampam This tool for brute discover GET and POST parameters. blackarch-webapp
1368paranoic A simple vulnerability scanner written in Perl. blackarch-scanner
1369paros Java-based HTTP/HTTPS proxy for assessing web app vulnerabilities. Supports editing/viewing HTTP messages on-the-fly, spiders, client certificates, proxy-chaining, intelligent scanning for XSS and SQLi, etc. blackarch-webapp
1370parse-evtx A tool to parse the Windows XML Event Log (EVTX) format. blackarch-forensic
1371parsero A robots.txt audit tool. blackarch-recon
1372passcracking A little python script for sending hashes to passcracking.com and milw0rm blackarch-cracker
1373passe-partout Tool to extract RSA and DSA private keys from any process linked with OpenSSL. The target memory is scanned to lookup specific OpenSSL patterns. blackarch-cracker
1374passhunt Search drives for documents containing passwords. blackarch-scanner
1375passivedns A network sniffer that logs all DNS server replies for use in a passive DNS setup. blackarch-sniffer
1376pastejacker Hacking systems with the automation of PasteJacking attacks. blackarch-automation
1377pasv-agrsv Passive recon / OSINT automation script. blackarch-automation
1378patator A multi-purpose bruteforcer. blackarch-cracker
1379patchkit Powerful binary patching from Python. blackarch-binary
1380pathzuzu Checks for PATH substitution vulnerabilities and logs the commands executed by the vulnerable executables. blackarch-exploitation
1381payloadmask Web Payload list editor to use techniques to try bypass web application firewall. blackarch-webapp
1382payloadsallthethings A list of useful payloads and bypass for Web Application Security and Pentest/CTF. blackarch-misc
1383pblind Little utility to help exploiting blind sql injection vulnerabilities. blackarch-exploitation
1384pbscan Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage. blackarch-scanner
1385pcapfex Packet CAPture Forensic Evidence eXtractor. blackarch-networking
1386pcapfix Tries to repair your broken pcap and pcapng files. blackarch-networking
1387pcapsipdump A tool for dumping SIP sessions (+RTP traffic, if available) to disk in a fashion similar to 'tcpdump -w' (format is exactly the same), but one file per sip session (even if there is thousands of concurrect SIP sessions). blackarch-voip
1388pcapteller A tool designed for traffic manipulation and replay. blackarch-sniffer
1389pcapxray A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction. blackarch-forensic
1390pcileech Tool, which uses PCIe hardware devices to read and write from the target system memory. blackarch-hardware
1391pcredz A tool that extracts credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, and more from a pcap file or from a live interface. blackarch-scanner
1392pdf-parser Parses a PDF document to identify the fundamental elements used in the analyzed file. blackarch-forensic
1393pdfbook-analyzer Utility for facebook memory forensics. blackarch-forensic
1394pdfcrack Password recovery tool for PDF-files blackarch-cracker
1395pdfid Scan a file to look for certain PDF keywords. blackarch-forensic
1396pdfresurrect A tool aimed at analyzing PDF documents. blackarch-forensic
1397pdgmail A password dictionary attack tool that targets windows authentication via the SMB protocol. blackarch-cracker
1398pe-sieve Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches). blackarch-windows
1399peach A SmartFuzzer that is capable of performing both generation and mutation based fuzzing. blackarch-fuzzer
1400peach-fuzz Simple vulnerability scanning framework. blackarch-fuzzer
1401peda Python Exploit Development Assistance for GDB blackarch-debugger
1402peepdf A Python tool to explore PDF files in order to find out if the file can be harmful or not blackarch-forensic
1403peepingtom A tool to take screenshots of websites. Much like eyewitness. blackarch-webapp
1404peframe Tool to perform static analysis on (portable executable) malware. blackarch-malware
1405pemcrack Cracks SSL PEM files that hold encrypted private keys. Brute forces or dictionary cracks. blackarch-cracker
1406pemcracker Tool to crack encrypted PEM files. blackarch-cracker
1407penbox A Penetration Testing Framework - The Tool With All The Tools. blackarch-automation
1408pentbox A security suite that packs security and stability testing oriented tools for networks and systems. blackarch-fuzzer
1409pentestly Python and Powershell internal penetration testing framework. blackarch-scanner
1410pentmenu A bash script for recon and DOS attacks. blackarch-automation
1411pepe Collect information about email addresses from Pastebin. blackarch-social
1412periscope A PE file inspection tool. blackarch-windows
1413perl-image-exiftool Reader and rewriter of EXIF informations that supports raw files blackarch-forensic
1414petools Portable executable (PE) manipulation toolkit. blackarch-windows
1415pev Command line based tool for PE32/PE32+ file analysis. blackarch-forensic
1416pextractor A forensics tool that can extract all files from an executable file created by a joiner or similar. blackarch-windows
1417pfff Tools and APIs for code analysis, visualization and transformation blackarch-code-audit
1418pftriage Python tool and library to help analyze files during malware triage and analysis. blackarch-malware
1419pgdbf Convert XBase / FoxPro databases to PostgreSQL blackarch-database
1420phantap An 'invisible' network tap aimed at red teams. blackarch-networking
1421phemail A python open source phishing email tool that automates the process of sending phishing emails as part of a social engineering test. blackarch-social
1422phishery An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector. blackarch-backdoor
1423phishingkithunter Find phishing kits which use your brand/organization's files and image'. blackarch-social
1424phonesploit Adb exploiting tools. blackarch-mobile
1425phoss Sniffer designed to find HTTP, FTP, LDAP, Telnet, IMAP4, VNC and POP3 logins. blackarch-cracker
1426photon Incredibly fast crawler which extracts urls, emails, files, website accounts and much more. blackarch-webapp
1427php-findsock-shell A Findsock Shell implementation in PHP + C. blackarch-webapp
1428php-mt-seed PHP mt_rand() seed cracker. blackarch-cracker
1429php-rfi-payload-decoder Decode and analyze RFI payloads developed in PHP. blackarch-cracker
1430php-vulnerability-hunter An whitebox fuzz testing tool capable of detected several classes of vulnerabilities in PHP web applications. blackarch-windows
1431phpsploit Stealth post-exploitation framework. blackarch-webapp
1432phpstress A PHP denial of service / stress test for Web Servers running PHP-FPM or PHP-CGI. blackarch-dos
1433phrasendrescher A modular and multi processing pass phrase cracking tool. blackarch-cracker
1434pidense Monitor illegal wireless network activities. (Fake Access Points) blackarch-wireless
1435pin A dynamic binary instrumentation tool. blackarch-automation
1436pingcastle Active Directory scanning tool. blackarch-windows
1437pintool This tool can be useful for solving some reversing challenges in CTFs events. blackarch-reversing
1438pintool2 Improved version of pintool. blackarch-reversing
1439pip3line The Swiss army knife of byte manipulation. blackarch-crypto
1440pipal A password analyser. blackarch-cracker
1441pipeline Designed to aid in targeted brute force password cracking attacks. blackarch-cracker
1442pirana Exploitation framework that tests the security of a email content filter. blackarch-exploitation
1443pivotsuite A portable, platform independent and powerful network pivoting toolkit. blackarch-networking
1444pixd Colourful visualization tool for binary files. blackarch-binary
1445pixiewps Offline bruteforce of the WPS pin exploiting the low or non-existing entropy of some APs blackarch-wireless
1446pkcrack A PkZip encryption cracker. blackarch-cracker
1447pkt2flow A simple utility to classify packets into flows. blackarch-networking
1448plasma An interactive disassembler for x86/ARM/MIPS. It can generates indented pseudo-code with colored syntax. blackarch-disassembler
1449plcscan This is a tool written in Python that will scan for PLC devices over s7comm or modbus protocols. blackarch-scanner
1450plecost Wordpress finger printer Tool. blackarch-webapp
1451plown A security scanner for Plone CMS. blackarch-webapp
1452plumber A python implementation of a grep friendly ftrace wrapper. blackarch-misc
1453plutil Converts .plist files between binary and UTF (editable) text formats. blackarch-misc
1454pmacct Small set of multi-purpose passive network monitoring tools [NetFlow IPFIX sFlow libpcap BGP BMP IGP Streaming Telemetry]. blackarch-networking
1455pmap Passively discover, scan, and fingerprint link-local peers by the background noise they generate (i.e. their broadcast and multicast traffic). blackarch-windows
1456pmapper A tool for quickly evaluating IAM permissions in AWS. blackarch-recon
1457pmcma Automated exploitation of invalid memory writes (being them the consequences of an overflow in a writable section, of a missing format string, integer overflow, variable misuse, or any other type of memory corruption). blackarch-exploitation
1458pmdump A tool that lets you dump the memory contents of a process to a file without stopping the process. blackarch-windows
1459pngcheck Verifies the integrity of PNG, JNG and MNG files by checking the CRCs and decompressing the image data. blackarch-stego
1460pnscan A parallel network scanner that can be used to survey TCP network services. blackarch-scanner
1461pocsuite An open-sourced remote vulnerability testing framework developed by the Knownsec Security Team. blackarch-exploitation
1462poison A fast, asynchronous syn and udp scanner. blackarch-scanner
1463poly Polymorphic webshells. blackarch-webapp
1464polyswarm-api An interface to the public and private PolySwarm APIs. blackarch-malware
1465pompem A python exploit tool finder. blackarch-exploitation
1466poracle A tool for demonstrating padding oracle attacks. blackarch-crypto
1467portia Automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. blackarch-automation
1468portmanteau An experimental unix driver IOCTL security tool that is useful for fuzzing and discovering device driver attack surface. blackarch-fuzzer
1469portspoof This program's primary goal is to enhance OS security through a set of new techniques. blackarch-defensive
1470posttester A jar file that will send POST requests to servers in order to test for the hash collision vulnerability discussed at the Chaos Communication Congress in Berlin. blackarch-crypto
1471powercloud Deliver powershell payloads via DNS TXT via CloudFlare using PowerShell. blackarch-windows
1472powerlessshell Run PowerShell command without invoking powershell.exe. blackarch-windows
1473powerops PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier". blackarch-windows
1474powersploit A PowerShell Post-Exploitation Framework. blackarch-exploitation
1475powerstager A payload stager using PowerShell. blackarch-binary
1476pown Security testing and exploitation toolkit built on top of Node.js and NPM. blackarch-webapp
1477ppee A Professional PE file Explorer for reversers, malware researchers and those who want to statically inspect PE files in more details. blackarch-windows
1478ppscan Yet another port scanner with HTTP and FTP tunneling support. blackarch-scanner
1479pr0cks python script setting up a transparent proxy to forward all TCP and DNS traffic through a SOCKS / SOCKS5 or HTTP(CONNECT) proxy using iptables -j REDIRECT target. blackarch-proxy
1480prads Is a "Passive Real-time Asset Detection System". blackarch-scanner
1481praeda An automated data/information harvesting tool designed to gather critical information from various embedded devices. blackarch-scanner
1482preeny Some helpful preload libraries for pwning stuff. blackarch-exploitation
1483pret Printer Exploitation Toolkit - The tool that made dumpster diving obsolete. blackarch-exploitation
1484princeprocessor Standalone password candidate generator using the PRINCE algorithm. blackarch-misc
1485procdump Generate coredumps based off performance triggers. blackarch-binary
1486proctal Provides a command line interface and a C library to manipulate the address space of a running program on Linux. blackarch-binary
1487procyon A suite of Java metaprogramming tools focused on code generation and analysis. blackarch-decompiler
1488profuzz Simple PROFINET fuzzer based on Scapy. blackarch-fuzzer
1489prometheus-firewall A Firewall analyzer written in ruby blackarch-networking
1490promiscdetect Checks if your network adapter(s) is running in promiscuous mode, which may be a sign that you have a sniffer running on your computer. blackarch-windows
1491propecia A fast class scanner that scans for a specified open port with banner grabbing blackarch-fingerprint
1492protos-sip SIP test suite. blackarch-voip
1493prowler Tool for AWS security assessment, auditing and hardening. blackarch-defensive
1494proxenet THE REAL hacker friendly proxy for web application pentests. blackarch-webapp
1495proxmark A powerful general purpose RFID tool, the size of a deck of cards, designed to snoop, listen and emulate everything from Low Frequency (125kHz) to High Frequency (13.56MHz) tags. blackarch-radio
1496proxychains-ng A hook preloader that allows to redirect TCP traffic of existing dynamically linked programs through one or more SOCKS or HTTP proxies blackarch-proxy
1497proxycheck This is a simple proxy tool that checks for the HTTP CONNECT method and grabs verbose output from a webserver. blackarch-scanner
1498proxyp Small multithreaded Perl script written to enumerate latency, port numbers, server names, & geolocations of proxy IP addresses. blackarch-proxy
1499proxyscan A security penetration testing tool to scan for hosts and ports through a Web proxy server. blackarch-scanner
1500proxytunnel a program that connects stdin and stdout to a server somewhere on the network, through a standard HTTPS proxy blackarch-tunnel
1501ps1encode A tool to generate and encode a PowerShell based Metasploit payloads. blackarch-exploitation
1502pscan A limited problem scanner for C source files blackarch-code-audit
1503pshitt A lightweight fake SSH server designed to collect authentication data sent by intruders. blackarch-honeypot
1504pstoreview Lists the contents of the Protected Storage. blackarch-windows
1505ptf The Penetration Testers Framework: Way for modular support for up-to-date tools. blackarch-exploitation
1506pth-toolkit Modified version of the passing-the-hash tool collection made to work straight out of the box. blackarch-sniffer
1507ptunnel A tool for reliably tunneling TCP connections over ICMP echo request and reply packets blackarch-tunnel
1508pulledpork Snort rule management. blackarch-misc
1509pulsar Protocol Learning and Stateful Fuzzing. blackarch-fuzzer
1510punter Hunt domain names using DNSDumpster, WHOIS, Reverse WHOIS, Shodan, Crimeflare. blackarch-recon
1511pupy Opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python. blackarch-automation
1512pureblood A Penetration Testing Framework created for Hackers / Pentester / Bug Hunter. blackarch-automation
1513pwd-hash A password hashing tool that use the crypt function to generate the hash of a string given on standard input. blackarch-crypto
1514pwdlogy A target specific wordlist generating tool for social engineers and security researchers. blackarch-misc
1515pwdlyser Python-based CLI Password Analyser (Reporting Tool). blackarch-crypto
1516pwdump Extracts the binary SAM and SYSTEM file from the filesystem and then the hashes. blackarch-windows
1517pwnat A tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding and *no* DMZ setup on any routers in order to directly communicate with each other. blackarch-networking
1518pwndbg Makes debugging with GDB suck less blackarch-debugger
1519pwned A command-line tool for querying the 'Have I been pwned?' service. blackarch-recon
1520pwned-search Pwned Password API lookup. blackarch-recon
1521pwnedornot Tool to find passwords for compromised email addresses. blackarch-recon
1522pwnloris An improved slowloris DOS tool which keeps attacking until the server starts getting exhausted. blackarch-dos
1523pwntools CTF framework and exploit development library. blackarch-disassembler
1524pybozocrack A silly & effective MD5 cracker in Python. blackarch-cracker
1525pydictor A useful hacker dictionary builder for a brute-force attack. blackarch-misc
1526pyersinia Network attack tool like yersinia but written in Python. blackarch-networking
1527pyew A python tool to analyse malware. blackarch-malware
1528pyexfil A couple of beta stage tools for data exfiltration. blackarch-networking
1529pyfiscan Free web-application vulnerability and version scanner. blackarch-webapp
1530pyinstaller A program that converts (packages) Python programs into stand-alone executables, under Windows, Linux, Mac OS X, Solaris and AIX. blackarch-misc
1531pyjfuzz Python JSON Fuzzer. blackarch-fuzzer
1532pykek Kerberos Exploitation Kit. blackarch-exploitation
1533pymeta Auto Scanning to SSL Vulnerability. blackarch-recon
1534pyminifakedns Minimal DNS server written in Python; it always replies with a 127.0.0.1 A-record. blackarch-networking
1535pyrasite Code injection and introspection of running Python processes. blackarch-backdoor
1536pyrit The famous WPA precomputed cracker blackarch-cracker
1537pyssltest A python multithreaded script to make use of Qualys ssllabs api to test SSL flaws. blackarch-scanner
1538pytacle Automates the task of sniffing GSM frames blackarch-sniffer
1539pytbull A python based flexible IDS/IPS testing framework shipped with more than 300 tests. blackarch-scanner
1540pythem python2 penetration testing framework. blackarch-scanner
1541python-arsenic Async WebDriver implementation for asyncio and asyncio-compatible frameworks. blackarch-automation
1542python-capstone Lightweight multi-platform, multi-architecture disassembly framework blackarch-reversing
1543python-frida Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. blackarch-reversing
1544python-frida-tools Frida CLI tools. blackarch-mobile
1545python-google-streetview A command line tool and module for Google Street View Image API. blackarch-misc
1546python-ivre Network recon framework based on Nmap, Masscan, Zeek (Bro), Argus, Netflow,... (library) blackarch-recon
1547python-jsbeautifier JavaScript unobfuscator and beautifier blackarch-reversing
1548python-keylogger Simple keystroke logger. blackarch-keylogger
1549python-minidump Python library to parse and read Microsoft minidump file format. blackarch-windows
1550python-minikerberos Kerberos manipulation library in pure Python. blackarch-windows
1551python-oletools Tools to analyze Microsoft OLE2 files. blackarch-binary
1552python-python-cymruwhois Python client for the whois.cymru.com service blackarch-networking
1553python-rekall Memory Forensic Framework. blackarch-forensic
1554python-shodan Python library and command-line utility for Shodan (https://developer.shodan.io). blackarch-recon
1555python-trackerjacker Finds and tracks wifi devices through raw 802.11 monitoring. blackarch-wireless
1556python-uncompyle6 A Python cross-version decompiler. blackarch-decompiler
1557python-utidylib Python bindings for Tidy HTML parser/cleaner. blackarch-misc
1558python-yara-rednaga The Python interface for YARA.
1559python2-capstone Lightweight multi-platform, multi-architecture disassembly framework blackarch-reversing
1560python2-darts.util.lru Simple dictionary with LRU behaviour. blackarch-misc
1561python2-frida Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers. blackarch-reversing
1562python2-frida-tools Frida CLI tools. blackarch-mobile
1563python2-google-streetview A command line tool and module for Google Street View Image API. blackarch-misc
1564python2-ivre Network recon framework based on Nmap, Masscan, Zeek (Bro), Argus, Netflow,... (library) blackarch-recon
1565python2-jsbeautifier JavaScript unobfuscator and beautifier. blackarch-webapp
1566python2-ldapdomaindump Active Directory information dumper via LDAP. blackarch-scanner
1567python2-minidump Python library to parse and read Microsoft minidump file format. blackarch-windows
1568python2-minikerberos Kerberos manipulation library in pure Python. blackarch-windows
1569python2-oletools Tools to analyze Microsoft OLE2 files. blackarch-binary
1570python2-rekall Memory Forensic Framework. blackarch-forensic
1571python2-shodan Python library and command-line utility for Shodan (https://developer.shodan.io). blackarch-recon
1572python2-webtech Identify technologies used on websites. blackarch-webapp
1573python2-yara Tool aimed at helping malware researchers to identify and classify malware samples blackarch-malware
1574qark Tool to look for several security related Android application vulnerabilities. blackarch-mobile
1575qrljacker QRLJacker is a highly customizable exploitation framework to demonstrate "QRLJacking Attack Vector". blackarch-social
1576quickrecon A python script for simple information gathering. It attempts to find subdomain names, perform zone transfers and gathers emails from Google and Bing. blackarch-recon
1577quicksand-lite Command line tool for scanning streams within office documents plus xor db attack. blackarch-defensive
1578rabid A CLI tool and library allowing to simply decode all kind of BigIP cookies. blackarch-webapp
1579raccoon A high performance offensive security tool for reconnaissance and vulnerability scanning. blackarch-recon
1580radamsa General purpose mutation based fuzzer blackarch-fuzzer
1581radare2 Open-source tools to disasm, debug, analyze and manipulate binary files blackarch-reversing
1582radare2-cutter Qt and C++ GUI for radare2 reverse engineering framework blackarch-reversing
1583radare2-keystone Keystone assembler plugins for radare2. blackarch-reversing
1584radiography A forensic tool which grabs as much information as possible from a Windows system. blackarch-windows
1585rainbowcrack Password cracker based on the faster time-memory trade-off. With MySQL and Cisco PIX Algorithm patches. blackarch-cracker
1586ranger-scanner A tool to support security professionals to access and interact with remote Microsoft Windows based systems. blackarch-scanner
1587rapidscan The Multi-Tool Web Vulnerability Scanner. blackarch-webapp
1588rarcrack This program uses bruteforce algorithm to find correct password (rar, 7z, zip). blackarch-cracker
1589rasenum A small program which lists the information for all of the entries in any phonebook file (.pbk). blackarch-windows
1590ratproxy A passive web application security assessment tool blackarch-fuzzer
1591raven A Linkedin information gathering tool that can be used by pentesters to gather information about an organization employees using Linkedin. blackarch-social
1592rawr Rapid Assessment of Web Resources. A web enumerator. blackarch-scanner
1593rbndr Simple DNS Rebinding Service. blackarch-spoof
1594rcracki-mt A tool to perform rainbow table attacks on password hashes. It is intended for indexed/perfected rainbow tables, mainly generated by the distributed project www.freerainbowtables.com blackarch-cracker
1595rdesktop-brute It connects to windows terminal servers - Bruteforce patch included. blackarch-cracker
1596reaver Brute force attack against Wifi Protected Setup blackarch-wireless
1597rebind DNS Rebinding Tool blackarch-exploitation
1598recaf Modern Java bytecode editor. blackarch-decompiler
1599recon-ng A full-featured Web Reconnaissance framework written in Python. blackarch-recon
1600reconnoitre A security tool for multithreaded information gathering and service enumeration. blackarch-recon
1601reconscan Network reconnaissance and vulnerability assessment tools. blackarch-recon
1602recoverjpeg Recover jpegs from damaged devices. blackarch-forensic
1603recsech Tool for doing Footprinting and Reconnaissance on the target web. blackarch-recon
1604recuperabit A tool for forensic file system reconstruction. blackarch-forensic
1605red-hawk All in one tool for Information Gathering, Vulnerability Scanning and Crawling. blackarch-recon
1606redasm Interactive, multiarchitecture disassembler written in C++ using Qt5 as UI Framework. blackarch-disassembler
1607redfang Finds non-discoverable Bluetooth devices by brute-forcing the last six bytes of the devices' Bluetooth addresses and calling read_remote_name(). blackarch-bluetooth
1608redirectpoison A tool to poison a targeted issuer of SIP INVITE requests with 301 (i.e. Moved Permanently) redirection responses. blackarch-voip
1609redpoint Digital Bond's ICS Enumeration Tools. blackarch-misc
1610redsocks Transparent redirector of any TCP connection to proxy. blackarch-proxy
1611reelphish A Real-Time Two-Factor Phishing Tool. blackarch-social
1612regeorg The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn. blackarch-tunnel
1613reglookup Command line utility for reading and querying Windows NT registries blackarch-forensic
1614regreport Windows registry forensic analysis tool. blackarch-windows
1615regview Open raw Windows NT 5 Registry files (Windows 2000 or higher). blackarch-windows
1616rekall Memory Forensic Framework. blackarch-forensic
1617relay-scanner An SMTP relay scanner. blackarch-scanner
1618remot3d An Simple Exploit for PHP Language. blackarch-webapp
1619replayproxy Forensic tool to replay web-based attacks (and also general HTTP traffic) that were captured in a pcap file. blackarch-forensic
1620resourcehacker Resource compiler and decompiler for Windows® applications. blackarch-windows
1621responder A LLMNR and NBT-NS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication. blackarch-scanner
1622responder-multirelay A LLMNR and NBT-NS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2 (multirelay version), blackarch-scanner
1623retdec Retargetable machine-code decompiler based on LLVM. blackarch-decompiler
1624reverseip Ruby based reverse IP-lookup tool. blackarch-recon
1625revipd A simple reverse IP domain scanner. blackarch-recon
1626revsh A reverse shell with terminal support, data tunneling, and advanced pivoting capabilities. blackarch-backdoor
1627rex Shellphish's automated exploitation engine, originally created for the Cyber Grand Challenge. blackarch-exploitation
1628rext Router EXploitation Toolkit - small toolkit for easy creation and usage of various python scripts that work with embedded devices. blackarch-exploitation
1629rfcat RF ChipCon-based Attack Toolset. blackarch-exploitation
1630rfdump Tool to detect RFID-Tags and show their meta information blackarch-wireless
1631rfidiot An open source python library for exploring RFID devices. blackarch-wireless
1632rfidtool A opensource tool to read / write rfid tags blackarch-wireless
1633ridenum A null session RID cycle attack for brute forcing domain controllers. blackarch-cracker
1634rifiuti2 A rewrite of rifiuti, a great tool from Foundstone folks for analyzing Windows Recycle Bin INFO2 file. blackarch-forensic
1635rinetd internet redirection server blackarch-networking
1636ripdc A script which maps domains related to an given ip address or domainname. blackarch-recon
1637riwifshell Web backdoor - infector - explorer. blackarch-webapp
1638rkhunter Checks machines for the presence of rootkits and other unwanted tools. blackarch-forensic
1639rlogin-scanner Multithreaded rlogin scanner. Tested on Linux, OpenBSD and Solaris. blackarch-cracker
1640rogue-mysql-server A rogue MySQL server written in Python. blackarch-misc
1641rootbrute Local root account bruteforcer. blackarch-cracker
1642ropeadope A linux log cleaner. blackarch-anti-forensic
1643ropeme A set of python scripts to generate ROP gadgets and payload. blackarch-exploitation
1644ropgadget Search gadgets in binaries to facilitate ROP exploitation for several file formats and architectures blackarch-exploitation
1645ropper Show information about binary files and find gadgets to build rop chains for different architectures blackarch-exploitation
1646roputils A Return-oriented Programming toolkit. blackarch-exploitation
1647routerhunter Tool used to find vulnerable routers and devices on the Internet and perform tests. blackarch-scanner
1648routersploit Open-source exploitation framework dedicated to embedded devices blackarch-exploitation
1649rp A full-cpp written tool that aims to find ROP sequences in PE/Elf/Mach-O x86/x64 binaries. blackarch-exploitation
1650rpak A collection of tools that can be useful for doing attacks on routing protocols. blackarch-windows
1651rpcsniffer Sniffs WINDOWS RPC messages in a given RPC server process. blackarch-windows
1652rpctools Contains three separate tools for obtaining information from a system that is running RPC services blackarch-windows
1653rpdscan Remmina Password Decoder and scanner. blackarch-cracker
1654rpivot Socks4 reverse proxy for penetration testing. blackarch-proxy
1655rr A Record and Replay Framework. blackarch-debugger
1656rrs A reverse (connecting) remote shell. Instead of listening for incoming connections it will connect out to a listener (rrs in listen mode). With tty support and more. blackarch-backdoor
1657rsactftool RSA tool for ctf - retreive private key from weak public key and/or uncipher data. blackarch-crypto
1658rsakeyfind A tool to find RSA key in RAM. blackarch-cracker
1659rsatool Tool that can be used to calculate RSA and RSA-CRT parameters. blackarch-crypto
1660rshack Python tool which allows to carry out some attacks on RSA, and offer a few tools to manipulate RSA keys. blackarch-crypto
1661rsmangler rsmangler takes a wordlist and mangle it blackarch-automation
1662rspet A Python based reverse shell equipped with functionalities that assist in a post exploitation scenario. blackarch-exploitation
1663rtfm A database of common, interesting or useful commands, in one handy referable form. blackarch-misc
1664rtlamr An rtl-sdr receiver for smart meters operating in the 900MHz ISM band. blackarch-radio
1665rtlizer Simple spectrum analyzer. blackarch-scanner
1666rtlsdr-scanner A cross platform Python frequency scanning GUI for the OsmoSDR rtl-sdr library. blackarch-scanner
1667rtp-flood RTP flooder blackarch-voip
1668rtpbreak Detects, reconstructs and analyzes any RTP session blackarch-networking
1669rubilyn 64bit Mac OS-X kernel rootkit that uses no hardcoded address to hook the BSD subsystem in all OS-X Lion & below. It uses a combination of syscall hooking and DKOM to hide activity on a host. blackarch-backdoor
1670ruler A tool to abuse Exchange services. blackarch-webapp
1671rustbuster DirBuster for Rust. blackarch-webapp
1672rww-attack The Remote Web Workplace Attack tool will perform a dictionary attack against a live Microsoft Windows Small Business Server's 'Remote Web Workplace' portal. It currently supports both SBS 2003 and SBS 2008 and includes features to avoid account lock out. blackarch-webapp
1673s3-fuzzer A concurrent, command-line AWS S3 Fuzzer. blackarch-fuzzer
1674s3scanner Scan for open S3 buckets and dump. blackarch-scanner
1675safecopy A disk data recovery tool to extract data from damaged media. blackarch-forensic
1676sagan A snort-like log analysis engine. blackarch-ids
1677sakis3g An all-in-one script for connecting with 3G. blackarch-automation
1678sambascan Allows you to search an entire network or a number of hosts for SMB shares. It will also list the contents of all public shares that it finds. blackarch-scanner
1679samdump2 Dump password hashes from a Windows NT/2k/XP installation blackarch-cracker
1680samplicator Send copies of (UDP) datagrams to multiple receivers, with optional sampling and spoofing. blackarch-networking
1681samydeluxe Automatic samdump creation script. blackarch-cracker
1682sandmap Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles. blackarch-scanner
1683sandsifter The x86 processor fuzzer. blackarch-fuzzer
1684sandy An open-source Samsung phone encryption assessment framework blackarch-scanner
1685saruman ELF anti-forensics exec, for injecting full dynamic executables into process image (With thread injection). blackarch-binary
1686sasm A simple crossplatform IDE for NASM, MASM, GAS and FASM assembly languages. blackarch-misc
1687sawef Send Attack Web Forms. blackarch-webapp
1688sb0x A simple and Lightweight framework for Penetration testing. blackarch-scanner
1689sbd Netcat-clone, portable, offers strong encryption - features AES-CBC + HMAC-SHA1 encryption, program execution (-e), choosing source port, continuous reconnection with delay + more blackarch-crypto
1690sc-make Tool for automating shellcode creation. blackarch-exploitation
1691scalpel A frugal, high performance file carver. blackarch-forensic
1692scamper A tool that actively probes the Internet in order to analyze topology and performance. blackarch-scanner
1693scanless Utility for using websites that can perform port scans on your behalf. blackarch-scanner
1694scanmem Memory scanner designed to isolate the address of an arbitrary variable in an executing process blackarch-reversing
1695scannerl The modular distributed fingerprinting engine. blackarch-fingerprint
1696scanqli SQLi scanner to detect SQL vulns. blackarch-webapp
1697scansploit Exploit using barcodes, QRcodes, earn13, datamatrix. blackarch-exploitation
1698scanssh Fast SSH server and open proxy scanner. blackarch-scanner
1699scap-security-guide Security compliance content in SCAP, Bash, Ansible, and other formats. blackarch-automation
1700scap-workbench SCAP Scanner And Tailoring Graphical User Interface. blackarch-automation
1701scapy Powerful interactive packet manipulation program written in Python (tools) blackarch-networking
1702schnappi-dhcp Can fuck network with no DHCP. blackarch-misc
1703scout2 Security auditing tool for AWS environments. blackarch-scanner
1704scoutsuite Multi-Cloud Security Auditing Tool. blackarch-scanner
1705scrape-dns Searches for interesting cached DNS entries. blackarch-scanner
1706scrapy A fast high-level scraping and web crawling framework. blackarch-webapp
1707scratchabit Easily retargetable and hackable interactive disassembler with IDAPython-compatible plugin API. blackarch-disassembler
1708scrounge-ntfs Data recovery program for NTFS file systems blackarch-forensic
1709sctpscan A network scanner for discovery and security. blackarch-recon
1710sdn-toolkit Discover, Identify, and Manipulate SDN-Based Networks blackarch-networking
1711sdnpwn An SDN penetration testing toolkit. blackarch-scanner
1712sea A tool to help to create exploits of binary programs. blackarch-malware
1713search1337 1337Day Online Exploit Scanner. blackarch-automation
1714seat Next generation information digging application geared toward the needs of security professionals. It uses information stored in search engine databases, cache repositories, and other public resources to scan web sites for potential vulnerabilities. blackarch-scanner
1715secscan Web Apps Scanner and Much more utilities. blackarch-webapp
1716secure-delete Secure file, disk, swap, memory erasure utilities. blackarch-anti-forensic
1717seeker Accurately Locate People using Social Engineering. blackarch-social
1718sees Increase the success rate of phishing attacks by sending emails to company users as if they are coming from the very same company's domain. blackarch-social
1719sensepost-xrdp A rudimentary remote desktop tool for the X11 protocol exploiting unauthenticated x11 sessions. blackarch-exploitation
1720sergio-proxy A multi-threaded transparent HTTP proxy for manipulating web traffic blackarch-proxy
1721serialbrute Java serialization brute force attack tool. blackarch-exploitation
1722server-status-pwn A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances. blackarch-recon
1723sessionlist Sniffer that intents to sniff HTTP packets and attempts to reconstruct interesting authentication data from websites that do not employ proper secure cookie auth. blackarch-networking
1724set Social-engineer toolkit. Aimed at penetration testing around Social-Engineering. blackarch-social
1725seth Perform a MitM attack and extract clear text credentials from RDP connections. blackarch-networking
1726setowner Allows you to set file ownership to any account, as long as you have the "Restore files and directories" user right. blackarch-windows
1727sfuzz A simple fuzzer. blackarch-fuzzer
1728sh00t A Testing Environment for Manual Security Testers. blackarch-misc
1729sha1collisiondetection Library and command line tool to detect SHA collision in a file blackarch-crypto
1730shard A command line tool to detect shared passwords. blackarch-recon
1731shareenum Tool to enumerate shares from Windows hosts. blackarch-scanner
1732sharesniffer Network share sniffer and auto-mounter for crawling remote file systems. blackarch-scanner
1733shed .NET runtime inspector. blackarch-windows
1734shellcheck Shell script analysis tool blackarch-code-audit
1735shellcode-factory Tool to create and test shellcodes from custom assembly sources. blackarch-exploitation
1736shellcodecs A collection of shellcode, loaders, sources, and generators provided with documentation designed to ease the exploitation and shellcode programming process. blackarch-exploitation
1737shellen Interactive shellcoding environment to easily craft shellcodes. blackarch-exploitation
1738shellinabox Implements a web server that can export arbitrary command line tools to a web based terminal emulator. blackarch-backdoor
1739shelling An offensive approach to the anatomy of improperly written OS command injection sanitisers. blackarch-misc
1740shellme Because sometimes you just need shellcode and opcodes quickly. This essentially just wraps some nasm/objdump calls into a neat script. blackarch-exploitation
1741shellnoob A toolkit that eases the writing and debugging of shellcode. blackarch-debugger
1742shellpop Generate easy and sophisticated reverse or bind shell commands. blackarch-automation
1743shellsploit-framework New Generation Exploit Development Kit. blackarch-exploitation
1744shellter A dynamic shellcode injection tool, and the first truly dynamic PE infector ever created. blackarch-exploitation
1745sherlock Find usernames across social networks. blackarch-social
1746sherlocked Universal script packer-- transforms any type of script into a protected ELF executable, encrypted with anti-debugging. blackarch-packer
1747shitflood A Socks5 clone flooder for the Internet Relay Chat (IRC) protocol. blackarch-dos
1748shocker A tool to find and exploit servers vulnerable to Shellshock. blackarch-exploitation
1749shodan Python library and command-line utility for Shodan (https://developer.shodan.io). blackarch-recon
1750shodanhat Search for hosts info with shodan. blackarch-recon
1751shootback A reverse TCP tunnel let you access target behind NAT or firewall. blackarch-backdoor
1752shortfuzzy A web fuzzing script written in perl. blackarch-webapp
1753sickle A shellcode development tool, created to speed up the various steps needed to create functioning shellcode. blackarch-exploitation
1754sidguesser Guesses sids/instances against an Oracle database according to a predefined dictionary file. blackarch-cracker
1755siege An http regression testing and benchmarking utility blackarch-dos
1756sign Automatically signs an apk with the Android test certificate. blackarch-mobile
1757sigploit Telecom Signaling Exploitation Framework - SS7, GTP, Diameter & SIP. blackarch-exploitation
1758sigspotter A tool that search in your HD to find wich publishers has been signed binaries in your PC. blackarch-windows
1759sigthief Stealing Signatures and Making One Invalid Signature at a Time. blackarch-exploitation
1760silenteye A cross-platform application design for an easy use of steganography. blackarch-stego
1761silenttrinity An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR. blackarch-backdoor
1762silk A collection of traffic analysis tools developed by the CERT NetSA to facilitate security analysis of large networks. blackarch-networking
1763simple-ducky A payload generator. blackarch-automation
1764simple-lan-scan A simple python script that leverages scapy for discovering live hosts on a network. blackarch-scanner
1765simpleemailspoofer A simple Python CLI to spoof emails. blackarch-social
1766simplify Generic Android Deobfuscator. blackarch-mobile
1767simplyemail Email recon made fast and easy, with a framework to build on CyberSyndicates blackarch-recon
1768simtrace2 Host utilities to communicate with SIMtrace2 USB Devices. blackarch-radio
1769sinfp A full operating system stack fingerprinting suite. blackarch-fingerprint
1770siparmyknife A small command line tool for developers and administrators of Session Initiation Protocol (SIP) applications. blackarch-voip
1771sipbrute A utility to perform dictionary attacks against the VoIP SIP Register hash. blackarch-voip
1772sipcrack A SIP protocol login cracker. blackarch-cracker
1773sipffer SIP protocol command line sniffer. blackarch-sniffer
1774sipi Simple IP Information Tools for Reputation Data Analysis. blackarch-recon
1775sipp A free Open Source test tool / traffic generator for the SIP protocol. blackarch-voip
1776sippts Set of tools to audit SIP based VoIP Systems. blackarch-voip
1777sipsak A small command line tool for developers and administrators of Session Initiation Protocol (SIP) applications. blackarch-voip
1778sipscan A sip scanner. blackarch-windows
1779sipshock A scanner for SIP proxies vulnerable to Shellshock. blackarch-scanner
1780sipvicious Tools for auditing SIP devices blackarch-automation
1781sitadel Web Application Security Scanner. blackarch-webapp
1782sitediff Fingerprint a web app using local files as the fingerprint sources. blackarch-webapp
1783sjet Siberas JMX exploitation toolkit. blackarch-exploitation
1784skipfish A fully automated, active web application security reconnaissance tool. blackarch-webapp
1785skiptracer OSINT python2 webscraping framework. Skipping the needs of API keys. blackarch-social
1786skul A PoC to bruteforce the Cryptsetup implementation of Linux Unified Key Setup (LUKS). blackarch-cracker
1787skyjack Takes over Parrot drones, deauthenticating their true owner and taking over control, turning them into zombie drones under your own control. blackarch-drone
1788skype-dump This is a tool that demonstrates dumping MD5 password hashes from the configuration file in Skype. blackarch-windows
1789skypefreak A Cross Platform Forensic Framework for Skype. blackarch-forensic
1790slackpirate Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace. blackarch-social
1791sleuthkit File system and media management forensic analysis tools blackarch-forensic
1792sleuthql Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap. blackarch-misc
1793sloth-fuzzer A smart file fuzzer. blackarch-fuzzer
1794slowhttptest Highly configurable tool that simulates some Application Layer Denial of Service (DoS) attacks blackarch-dos
1795slowloris A tool which is written in perl to test http-server vulnerabilites for connection exhaustion denial of service (DoS) attacks so you can enhance the security of your webserver. blackarch-dos
1796slowloris-py Low bandwidth DoS tool. blackarch-dos
1797slurp-scanner Evaluate the security of S3 buckets. blackarch-scanner
1798smali Assembler/disassembler for Android's dex format blackarch-disassembler
1799smali-cfgs Smali Control Flow Graph's. blackarch-mobile
1800smalisca Static Code Analysis for Smali files. blackarch-mobile
1801smap Shellcode mapper - Handy tool for shellcode analysis. blackarch-exploitation
1802smartphone-pentest-framework Repository for the Smartphone Pentest Framework (SPF). blackarch-mobile
1803smbbf SMB password bruteforcer. blackarch-cracker
1804smbcrunch 3 tools that work together to simplify reconaissance of Windows File Shares. blackarch-recon
1805smbexec A rapid psexec style attack with samba tools. blackarch-scanner
1806smbmap A handy SMB enumeration tool. blackarch-scanner
1807smbrelay SMB / HTTP to SMB replay attack toolkit. blackarch-windows
1808smbspider A lightweight python utility for searching SMB/CIFS/Samba file shares. blackarch-scanner
1809smikims-arpspoof Performs an ARP spoofing attack using the Linux kernel's raw sockets. blackarch-spoof
1810smod A modular framework with every kind of diagnostic and offensive feature you could need in order to pentest modbus protocol. blackarch-scanner
1811smplshllctrlr PHP Command Injection exploitation tool. blackarch-webapp
1812smtp-fuzz Simple smtp fuzzer. blackarch-fuzzer
1813smtp-test Automated testing of SMTP servers for penetration testing. blackarch-scanner
1814smtp-user-enum Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO. blackarch-recon
1815smtp-vrfy An SMTP Protocol Hacker. blackarch-scanner
1816smtpscan An SMTP scanner blackarch-fingerprint
1817smtptx A very simple tool used for sending simple email and do some basic email testing from a pentester perspective. blackarch-scanner
1818sn00p A modular tool written in bourne shell and designed to chain and automate security tools and tests. blackarch-automation
1819sn1per Automated Pentest Recon Scanner. blackarch-automation
1820snallygaster Tool to scan for secret files on HTTP servers. blackarch-webapp
1821snapception Intercept and decrypt all snapchats received over your network. blackarch-sniffer
1822snarf-mitm SMB Man in the Middle Attack Engine / relay suite. blackarch-exploitation
1823sniff-probe-req Wi-Fi Probe Requests Sniffer. blackarch-wireless
1824sniffer Packet Trace Parser for TCP, SMTP Emails, and HTTP Cookies. blackarch-networking
1825sniffglue Secure multithreaded packet sniffer blackarch-sniffer
1826sniffjoke Injects packets in the transmission flow that are able to seriously disturb passive analysis like sniffing, interception and low level information theft. blackarch-defensive
1827sniffles A Packet Capture Generator for IDS and Regular Expression Evaluation. blackarch-networking
1828snitch Turn back the asterisks in password fields to plaintext passwords. blackarch-windows
1829snmp-brute SNMP brute force, enumeration, CISCO config downloader and password cracking script. blackarch-cracker
1830snmp-fuzzer SNMP fuzzer uses Protos test cases with an entirely new engine written in Perl. blackarch-fuzzer
1831snmpattack SNMP scanner and attacking tool. blackarch-networking
1832snmpcheck A free open source utility to get information via SNMP protocols. blackarch-networking
1833snmpenum An snmp enumerator. blackarch-scanner
1834snmpscan A free, multi-processes SNMP scanner. blackarch-scanner
1835snoopbrute Multithreaded DNS recursive host brute-force tool. blackarch-scanner
1836snoopy-ng A distributed, sensor, data collection, interception, analysis, and visualization framework. blackarch-drone
1837snort A lightweight network intrusion detection system. blackarch-defensive
1838snow Steganography program for concealing messages in text files. blackarch-crypto
1839snowman A native code to C/C++ decompiler, see the examples of generated code. blackarch-windows
1840snscan A Windows based SNMP detection utility that can quickly and accurately identify SNMP enabled devices on a network. blackarch-windows
1841snuck Automatic XSS filter bypass. blackarch-webapp
1842snyk CLI and build-time tool to find and fix known vulnerabilities in open-source dependencies. blackarch-code-audit
1843soapui The Swiss-Army Knife for SOAP Testing. blackarch-proxy
1844socat Multipurpose relay blackarch-networking
1845social-mapper A social media enumeration and correlation tool. blackarch-social
1846social-vuln-scanner Gathers public information on companies to highlight social engineering risk. blackarch-social
1847socialfish Ultimate phishing tool with Ngrok integrated. blackarch-social
1848socketfuzz Simple socket fuzzer. blackarch-fuzzer
1849sockstat A tool to let you view information about open connections. It is similar to the tool of the same name that is included in FreeBSD, trying to faithfully reproduce as much functionality as is possible. blackarch-networking
1850soot A Java Bytecode Analysis and Transformation Framework. blackarch-binary
1851sooty The SOC Analysts all-in-one CLI tool to automate and speed up workflow. blackarch-defensive
1852spade A general-purpose Internet utility package, with some extra features to help in tracing the source of spam and other forms of Internet harassment. blackarch-windows
1853spaf Static Php Analysis and Fuzzer. blackarch-webapp
1854sparta Python GUI application which simplifies network infrastructure penetration testing by aiding the penetration tester in the scanning and enumeration phase. blackarch-scanner
1855spartan Frontpage and Sharepoint fingerprinting and attack tool. blackarch-fingerprint
1856sparty An open source tool written in python to audit web applications using sharepoint and frontpage architecture. blackarch-webapp
1857speedpwn An active WPA/2 Bruteforcer, original created to prove weak standard key generation in different ISP labeled routers without a client is connected. blackarch-cracker
1858spf A python tool designed to allow for quick recon and deployment of simple social engineering phishing exercises. blackarch-social
1859spfmap A program to map out SPF and DKIM records for a large number of domains. blackarch-recon
1860spiderfoot The Open Source Footprinting Tool. blackarch-recon
1861spiderpig-pdffuzzer A javascript pdf fuzzer blackarch-fuzzer
1862spiga Configurable web resource scanner. blackarch-webapp
1863spike-fuzzer IMMUNITYsec's fuzzer creation kit in C. blackarch-fuzzer
1864spike-proxy A Proxy for detecting vulnerabilities in web applications blackarch-webapp
1865spiped A utility for creating symmetrically encrypted and authenticated pipes between socket addresses. blackarch-networking
1866spipscan SPIP (CMS) scanner for penetration testing purpose written in Python. blackarch-webapp
1867splint A tool for statically checking C programs for security vulnerabilities and coding mistakes blackarch-code-audit
1868sploitctl Fetch, install and search exploit archives from exploit sites like exploit-db and packetstorm. blackarch-automation
1869sploitego Maltego Penetration Testing Transforms. blackarch-fuzzer
1870spoofcheck Simple script that checks a domain for email protections. blackarch-recon
1871spooftooph Designed to automate spoofing or cloning Bluetooth device Name, Class, and Address. Cloning this information effectively allows Bluetooth device to hide in plain sight. blackarch-bluetooth
1872spookflare Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures. blackarch-automation
1873sps A Linux packet crafting tool. Supports IPv4, IPv6 including extension headers, and tunneling IPv6 over IPv4. blackarch-networking
1874spyse Python API wrapper and command-line client for the tools hosted on spyse.com. blackarch-recon
1875sqid A SQL injection digger. blackarch-webapp
1876sqlbrute Brute forces data out of databases using blind SQL injection. blackarch-fuzzer
1877sqldict A dictionary attack tool for SQL Server. blackarch-windows
1878sqlivulscan This will give you the SQLi Vulnerable Website Just by Adding the Dork. blackarch-scanner
1879sqlmap Automatic SQL injection and database takeover tool blackarch-webapp
1880sqlninja A tool targeted to exploit SQL Injection vulnerabilities on a web application that uses Microsoft SQL Server as its back-end. blackarch-exploitation
1881sqlpat This tool should be used to audit the strength of Microsoft SQL Server passwords offline. blackarch-cracker
1882sqlping SQL Server scanning tool that also checks for weak passwords using wordlists. blackarch-windows
1883sqlpowerinjector Application created in .Net 1.1 that helps the penetration tester to find and exploit SQL injections on a web page. blackarch-windows
1884sqlsus An open source MySQL injection and takeover tool, written in perl blackarch-exploitation
1885ssdeep A program for computing context triggered piecewise hashes blackarch-crypto
1886ssdp-scanner SSDP amplification scanner written in Python. Makes use of Scapy. blackarch-scanner
1887ssh-audit SSH server auditing (banner, key exchange, encryption, mac, compression, compatbility, etc). blackarch-scanner
1888ssh-honeypot Fake sshd that logs ip addresses, usernames, and passwords. blackarch-honeypot
1889ssh-mitm SSH man-in-the-middle tool. blackarch-exploitation
1890ssh-privkey-crack A SSH private key cracker. blackarch-cracker
1891ssh-user-enum SSH User Enumeration Script in Python Using The Timing Attack. blackarch-scanner
1892sshatter Password bruteforcer for SSH. blackarch-cracker
1893sshscan A horizontal SSH scanner that scans large swaths of IPv4 space for a single SSH user and pass. blackarch-cracker
1894sshtrix A very fast multithreaded SSH login cracker. blackarch-cracker
1895sshtunnel Pure python SSH tunnels (CLI) blackarch-tunnel
1896sshuttle Transparent proxy server that forwards all TCP packets over ssh blackarch-proxy
1897ssl-hostname-resolver CN (Common Name) grabber on X.509 Certificates over HTTPS. blackarch-recon
1898ssl-phuck3r All in one script for Man-In-The-Middle attacks. blackarch-sniffer
1899sslcat SSLCat is a simple Unix utility that reads and writes data across an SSL enable network connection. blackarch-misc
1900sslcaudit Utility to perform security audits of SSL/TLS clients. blackarch-scanner
1901ssldump an SSLv3/TLS network protocol analyzer blackarch-sniffer
1902sslh SSL/SSH/OpenVPN/XMPP/tinc port multiplexer blackarch-networking
1903ssllabs-scan Command-line client for the SSL Labs APIs blackarch-scanner
1904sslmap A lightweight TLS/SSL cipher suite scanner. blackarch-scanner
1905sslnuke Transparent proxy that decrypts SSL traffic and prints out IRC messages. blackarch-cracker
1906sslscan A fast tools to scan SSL services, such as HTTPS to determine the ciphers that are supported blackarch-scanner
1907sslsniff A tool to MITM all SSL connections on a LAN and dynamically generate certs for the domains that are being accessed on the fly blackarch-sniffer
1908sslyze Python tool for analyzing the configuration of SSL servers and for identifying misconfigurations. blackarch-crypto
1909ssma Simple Static Malware Analyzer. blackarch-malware
1910ssrf-proxy Facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery. blackarch-proxy
1911stackflow Universal stack-based buffer overfow exploitation tool. blackarch-exploitation
1912stacoan Crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications. blackarch-mobile
1913staekka This plugin extends Metasploit for some missing features and modules allowing interaction with other/custom exploits/ways of getting shell access. blackarch-exploitation
1914stardox Github stargazers information gathering tool. blackarch-recon
1915starttls-mitm A mitm proxy that will transparently proxy and dump both plaintext and TLS traffic. blackarch-proxy
1916statsprocessor A high-performance word-generator based on per-position Markov-attack. blackarch-automation
1917stegdetect An automated tool for detecting steganographic content in images. blackarch-stego
1918steghide Embeds a message in a file by replacing some of the least significant bits blackarch-anti-forensic
1919stegolego Simple program for using stegonography to hide data within BMP images. blackarch-stego
1920stegosip TCP tunnel over RTP/SIP. blackarch-tunnel
1921stegoveritas Automatic image steganography analysis tool. blackarch-stego
1922stegsolve Steganography Solver. blackarch-stego
1923stenographer A packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. blackarch-sniffer
1924stepic A python image steganography tool. blackarch-stego
1925sticky-keys-hunter Script to test an RDP host for sticky keys and utilman backdoor. blackarch-scanner
1926stig-viewer XCCDF formatted SRGs and STIGs files viewer for SCAP validation tools. blackarch-scanner
1927stompy An advanced utility to test the quality of WWW session identifiers and other tokens that are meant to be unpredictable. blackarch-misc
1928storm-ring This simple tool is useful to test a PABX with "allow guest" parameter set to "yes" (in this scenario an anonymous caller could place a call). blackarch-voip
1929strace A diagnostic, debugging and instructional userspace tracer blackarch-binary
1930streamfinder Searches for Alternate Data Streams (ADS). blackarch-windows
1931striker An offensive information and vulnerability scanner. blackarch-webapp
1932striptls Proxy PoC implementation of STARTTLS stripping attacks. blackarch-proxy
1933strutscan Apache Struts2 vulnerability scanner written in Perl. blackarch-scanner
1934stunnel A program that allows you to encrypt arbitrary TCP connections inside SSL blackarch-networking
1935sub7 A remote administration tool. No further comments ;-) blackarch-windows
1936subbrute A DNS meta-query spider that enumerates DNS records and subdomains blackarch-scanner
1937subdomainer A tool designed for obtaining subdomain names from public sources. blackarch-recon
1938subfinder Modular subdomain discovery tool that can discover massive amounts of valid subdomains for any target. blackarch-recon
1939sublert A security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate. blackarch-recon
1940sublist3r A Fast subdomains enumeration tool for penetration testers. blackarch-recon
1941subover A Powerful Subdomain Takeover Tool. blackarch-scanner
1942subscraper Tool that performs subdomain enumeration through various techniques. blackarch-recon
1943subterfuge Automated Man-in-the-Middle Attack Framework. blackarch-exploitation
1944sucrack A multi-threaded Linux/UNIX tool for brute-force cracking local user accounts via su blackarch-cracker
1945sulley A pure-python fully automated and unattended fuzzing framework. blackarch-fuzzer
1946superscan Powerful TCP port scanner, pinger, resolver. blackarch-windows
1947suricata An Open Source Next Generation Intrusion Detection and Prevention Engine. blackarch-defensive
1948suricata-verify Suricata Verification Tests - Testing Suricata Output. blackarch-misc
1949svn-extractor A simple script to extract all web resources by means of .SVN folder exposed over network. blackarch-scanner
1950swaks Swiss Army Knife SMTP; Command line SMTP testing, including TLS and AUTH blackarch-networking
1951swap-digger A tool used to automate Linux swap analysis during post-exploitation or forensics. blackarch-forensic
1952swarm A distributed penetration testing tool. blackarch-scanner
1953swfintruder First tool for testing security in Flash movies. A runtime analyzer for SWF external movies. It helps to find flaws in Flash. blackarch-reversing
1954swftools A collection of SWF manipulation and creation utilities. blackarch-binary
1955sylkie IPv6 address spoofing with the Neighbor Discovery Protocol. blackarch-spoof
1956syms2elf A plugin for Hex-Ray's IDA Pro and radare2 to export the symbols recognized to the ELF symbol table. blackarch-reversing
1957synflood A very simply script to illustrate DoS SYN Flooding attack. blackarch-dos
1958synner A custom eth->ip->tcp packet generator (spoofer) for testing firewalls and dos attacks. blackarch-spoof
1959synscan fast asynchronous half-open TCP portscanner blackarch-scanner
1960syringe A General Purpose DLL & Code Injection Utility. blackarch-backdoor
1961sysdig Open source system-level exploration and troubleshooting tool blackarch-recon
1962sysinternals-suite Sysinternals tools suite. blackarch-windows
1963t50 Experimental Multi-protocol Packet Injector Tool. blackarch-dos
1964tabi BGP Hijack Detection. blackarch-defensive
1965tachyon-scanner Fast Multi-Threaded Web Discovery Tool. blackarch-scanner
1966tactical-exploitation Modern tactical exploitation toolkit. blackarch-scanner
1967taipan Web application security scanner. blackarch-scanner
1968taof Taof is a GUI cross-platform Python generic network protocol fuzzer. blackarch-fuzzer
1969tbear Transient Bluetooth Environment Auditor includes an ncurses-based Bluetooth scanner (a bit similar to kismet), a Bluetooth DoS tool, and a Bluetooth hidden device locator. blackarch-bluetooth
1970tcgetkey A set of tools that deal with acquiring physical memory dumps via FireWire and then scan the memory dump to locate TrueCrypt keys and finally decrypt the encrypted TrueCrypt container using the keys. blackarch-dos
1971tchunt-ng Reveal encrypted files stored on a filesystem. blackarch-forensic
1972tckfc TrueCrypt key file cracker. blackarch-cracker
1973tcpcontrol-fuzzer 2^6 TCP control bit fuzzer (no ECN or CWR). blackarch-fuzzer
1974tcpcopy A TCP stream replay tool to support real testing of Internet server applications. blackarch-networking
1975tcpdstat Get protocol statistics from tcpdump pcap files. blackarch-networking
1976tcpdump Powerful command-line packet analyzer blackarch-networking
1977tcpextract Extracts files from captured TCP sessions. Support live streams and pcap files. blackarch-networking
1978tcpflow Captures data transmitted as part of TCP connections then stores the data conveniently blackarch-networking
1979tcpick TCP stream sniffer and connection tracker blackarch-sniffer
1980tcpjunk A general tcp protocols testing and hacking utility. blackarch-exploitation
1981tcpreplay Gives the ability to replay previously captured traffic in a libpcap format blackarch-networking
1982tcptrace A TCP dump file analysis tool blackarch-networking
1983tcptraceroute A traceroute implementation using TCP packets. blackarch-networking
1984tcpwatch A utility written in Python that lets you monitor forwarded TCP connections or HTTP proxy connections. blackarch-networking
1985tcpxtract A tool for extracting files from network traffic. blackarch-misc
1986teardown Command line tool to send a BYE request to tear down a call. blackarch-voip
1987tekdefense-automater IP URL and MD5 OSINT Analysis blackarch-forensic
1988termineter Smart meter testing framework blackarch-fuzzer
1989testdisk Checks and undeletes partitions + PhotoRec, signature based recovery tool blackarch-forensic
1990testssl.sh Testing TLS/SSL encryption blackarch-crypto
1991tftp-bruteforce A fast TFTP filename bruteforcer written in perl. blackarch-cracker
1992tftp-fuzz Master TFTP fuzzing script as part of the ftools series of fuzzers. blackarch-fuzzer
1993tftp-proxy This tool accepts connection on tftp and reloads requested content from an upstream tftp server. Meanwhile modifications to the content can be done by pluggable modules. So this one's nice if your mitm with some embedded devices. blackarch-proxy
1994tgcd TCP/IP Gender Changer Daemon utility. blackarch-networking
1995thc-ipv6 Complete tool set to attack the inherent protocol weaknesses of IPv6 and ICMP6 blackarch-networking
1996thc-keyfinder Finds crypto keys, encrypted data and compressed data in files by analyzing the entropy of parts of the file. blackarch-cracker
1997thc-pptp-bruter A brute force program that works against pptp vpn endpoints (tcp port 1723). blackarch-cracker
1998thc-smartbrute This tool finds undocumented and secret commands implemented in a smartcard. blackarch-cracker
1999thc-ssl-dos A tool to verify the performance of SSL. To be used in your authorized and legitimate area ONLY. You need to accept this to make use of it, no use for bad intentions, you have been warned! blackarch-dos
2000thefatrat TheFatRat a massive exploiting tool: easy tool to generate backdoor and easy tool to post exploitation attack. blackarch-automation
2001thefuzz CLI fuzzing tool. blackarch-fuzzer
2002theharvester Python tool for gathering e-mail accounts and subdomain names from different public sources (search engines, pgp key servers). blackarch-recon
2003themole Automatic SQL injection exploitation tool. blackarch-webapp
2004thezoo A project created to make the possibility of malware analysis open and available to the public. blackarch-malware
2005thumbcacheviewer Extract Windows thumbcache database files. blackarch-forensic
2006tiger A security scanner, that checks computer for known problems. Can also use tripwire, aide and chkrootkit. blackarch-automation
2007tilt An easy and simple tool implemented in Python for ip reconnaissance, with reverse ip lookup. blackarch-recon
2008timegen This program generates a *.wav file to "send" an own time signal to DCF77 compatible devices. blackarch-wireless
2009tinc VPN (Virtual Private Network) daemon blackarch-networking
2010tinfoleak Get detailed information about a Twitter user activity. blackarch-recon
2011tinfoleak2 The most complete open-source tool for Twitter intelligence analysis. blackarch-recon
2012tinyproxy A light-weight HTTP proxy daemon for POSIX operating systems. blackarch-proxy
2013tls-attacker A Java-based framework for analyzing TLS libraries. blackarch-crypto
2014tls-fingerprinting Tool and scripts to perform TLS Fingerprinting. blackarch-fingerprint
2015tls-prober A tool to fingerprint SSL/TLS servers. blackarch-fingerprint
2016tlsenum A command line tool to enumerate TLS cipher-suites supported by a server. blackarch-crypto
2017tlsfuzzer SSL and TLS protocol test suite and fuzzer. blackarch-crypto
2018tlspretense SSL/TLS client testing framework. blackarch-crypto
2019tlssled A Linux shell script whose purpose is to evaluate the security of a target SSL/TLS (HTTPS) web server implementation. blackarch-automation
2020tnscmd a lame tool to prod the oracle tnslsnr process (1521/tcp) blackarch-misc
2021tomcatwardeployer Apache Tomcat auto WAR deployment & pwning penetration testing tool. blackarch-exploitation
2022topera An IPv6 security analysis toolkit, with the particularity that their attacks can't be detected by Snort. blackarch-scanner
2023tor Anonymizing overlay network. blackarch-proxy
2024tor-autocircuit Tor Autocircuit was developed to give users a finer control over Tor circuit creation. The tool exposes the functionality of TorCtl library which allows its users to control circuit length, speed, geolocation, and other parameters. blackarch-defensive
2025tor-browser-en Tor Browser Bundle: anonymous browsing using Firefox and Tor. blackarch-defensive
2026tor-router A tool that allow you to make TOR your default gateway and send all internet connections under TOR (as transparent proxy) for increase privacy/anonymity without extra unnecessary code. blackarch-defensive
2027torcrawl Crawl and extract (regular or onion) webpages through TOR network. blackarch-webapp
2028torctl Script to redirect all traffic through tor network including dns queries for anonymizing entire system. blackarch-automation
2029torshammer A slow POST Denial of Service testing tool written in Python. blackarch-dos
2030torsocks Wrapper to safely torify applications blackarch-proxy
2031tpcat Tool based upon pcapdiff by the EFF. It will analyze two packet captures (taken on each side of the firewall as an example) and report any packets that were seen on the source capture but didn’t make it to the dest. blackarch-misc
2032tplmap Automatic Server-Side Template Injection Detection and Exploitation Tool. blackarch-webapp
2033traceroute Tracks the route taken by packets over an IP network blackarch-recon
2034trape People tracker on the Internet: OSINT analysis and research tool by Jose Pino. blackarch-social
2035treasure Hunt for sensitive information through githubs code search. blackarch-recon
2036trid An utility designed to identify file types from their binary signatures. blackarch-forensic
2037trinity A Linux System call fuzzer. blackarch-fuzzer
2038triton A Dynamic Binary Analysis (DBA) framework. blackarch-binary
2039trixd00r An advanced and invisible userland backdoor based on TCP/IP for UNIX systems. blackarch-backdoor
2040truecrack Password cracking for truecrypt(c) volumes. blackarch-cracker
2041truecrypt Free open-source cross-platform disk encryption software blackarch-defensive
2042truegaze Static analysis tool for Android/iOS apps focusing on security issues outside the source code. blackarch-mobile
2043truehunter Detect TrueCrypt containers using a fast and memory efficient approach. blackarch-forensic
2044trufflehog Searches through git repositories for high entropy strings, digging deep into commit history. blackarch-recon
2045trusttrees A Tool for DNS Delegation Trust Graphing. blackarch-recon
2046tsh An open-source UNIX backdoor that compiles on all variants, has full pty support, and uses strong crypto for communication. blackarch-backdoor
2047tsh-sctp An open-source UNIX backdoor. blackarch-backdoor
2048tunna a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments. blackarch-networking
2049tweets-analyzer Tweets metadata scraper & activity analyzer. blackarch-social
2050twint An advanced Twitter scraping & OSINT tool written in Python that doesn't use Twitter's API, allowing you to scrape a user's followers, following, Tweets and more while evading most API limitations. blackarch-social
2051twofi Twitter Words of Interest. blackarch-recon
2052typo-enumerator Enumerate Typo3 version and extensions. blackarch-webapp
2053tyton Kernel-Mode Rootkit Hunter. blackarch-defensive
2054u3-pwn A tool designed to automate injecting executables to Sandisk smart usb devices with default U3 software install. blackarch-backdoor
2055uacme Defeating Windows User Account Control. blackarch-windows
2056uatester User Agent String Tester blackarch-misc
2057ubertooth A 2.4 GHz wireless development board suitable for Bluetooth experimentation. Open source hardware and software. Tools only. blackarch-bluetooth
2058ubiquiti-probing A Ubiquiti device discovery tool. blackarch-recon
2059ubitack Tool, which automates some of the tasks you might need on a (wireless) penetration test or while you are on the go. blackarch-wireless
2060udis86 A minimalistic disassembler library blackarch-reversing
2061udp2raw-tunnel An Encrypted, Anti-Replay, Multiplexed UdP Tunnel, tunnels udp traffic through fake-tcp or icmp by using raw socket blackarch-tunnel
2062udpastcp This program hides UDP traffic as TCP traffic in order to bypass certain firewalls. blackarch-networking
2063udptunnel Tunnels TCP over UDP packets. blackarch-networking
2064udsim A graphical simulator that can emulate different modules in a vehicle and respond to UDS request. blackarch-scanner
2065uefi-firmware-parser Parse BIOS/Intel ME/UEFI firmware related structures: Volumes, FileSystems, Files, etc blackarch-firmware
2066ufo-wardriving Allows you to test the security of wireless networks by detecting their passwords based on the router model. blackarch-cracker
2067ufonet A tool designed to launch DDoS attacks against a target, using 'Open Redirect' vectors on third party web applications, like botnet. blackarch-dos
2068umap The USB host security assessment tool. blackarch-scanner
2069umit A powerful nmap frontend. blackarch-networking
2070uncaptcha2 Defeating the latest version of ReCaptcha with 91% accuracy. blackarch-webapp
2071unhide A forensic tool to find processes hidden by rootkits, LKMs or by other techniques. blackarch-forensic
2072unibrute Multithreaded SQL union bruteforcer. blackarch-exploitation
2073unicorn-powershell A simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. blackarch-backdoor
2074unicornscan A new information gathering and correlation engine. blackarch-scanner
2075uniofuzz The universal fuzzing tool for browsers, web services, files, programs and network services/ports blackarch-fuzzer
2076uniscan A simple Remote File Include, Local File Include and Remote Command Execution vulnerability scanner. blackarch-fuzzer
2077unix-privesc-check Tries to find misconfigurations that could allow local unprivilged users to escalate privileges to other users or to access local apps (e.g. databases). blackarch-automation
2078unsecure Bruteforces network login masks. blackarch-windows
2079unstrip ELF Unstrip Tool. blackarch-disassembler
2080untwister Seed recovery tool for PRNGs. blackarch-crypto
2081upnp-pentest-toolkit UPnP Pentest Toolkit for Windows. blackarch-windows
2082upnpscan Scans the LAN or a given address range for UPnP capable devices. blackarch-scanner
2083uppwn A script that automates detection of security flaws on websites' file upload systems'. blackarch-webapp
2084upx Ultimate executable compressor. blackarch-binary
2085urh Universal Radio Hacker: investigate wireless protocols like a boss blackarch-radio
2086urlcrazy Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage. blackarch-webapp
2087urldigger A python tool to extract URL addresses from different HOT sources and/or detect SPAM and malicious code blackarch-webapp
2088urlview A curses URL parser for text files. blackarch-misc
2089usb-canary A Linux or OSX tool that uses psutil to monitor devices while your computer is locked. In the case it detects someone plugging in or unplugging devices it can be configured to send you an SMS or alert you via Slack or Pushover. blackarch-defensive
2090usbrip USB device artifacts tracker. blackarch-forensic
2091username-anarchy Tools for generating usernames when penetration testing. blackarch-automation
2092usernamer Pentest Tool to generate usernames/logins based on supplied names. blackarch-misc
2093userrecon Find usernames across over 75 social networks. blackarch-recon
2094userrecon-py Recognition usernames in 187 social networks. blackarch-social
2095uw-loveimap Multi threaded imap bounce scanner. blackarch-scanner
2096uw-offish Clear-text protocol simulator. blackarch-networking
2097uw-udpscan Multi threaded udp scanner. blackarch-scanner
2098uw-zone Multi threaded, randomized IP zoner. blackarch-scanner
2099v3n0m A tool to automate mass SQLi d0rk scans and Metasploit Vulns. blackarch-scanner
2100vais SWF Vulnerability & Information Scanner. blackarch-scanner
2101valabind Tool to parse vala or vapi files to transform them into swig interface files, C++, NodeJS-ffi or GIR blackarch-misc
2102valgrind Tool to help find memory-management problems in programs blackarch-binary
2103vane A vulnerability scanner which checks the security of WordPress installations using a black box approach. blackarch-webapp
2104vanguard A comprehensive web penetration testing tool written in Perl thatidentifies vulnerabilities in web applications. blackarch-webapp
2105vbrute Virtual hosts brute forcer. blackarch-recon
2106vbscan A black box vBulletin vulnerability scanner written in perl. blackarch-webapp
2107vcsmap A plugin-based tool to scan public version control systems for sensitive information. blackarch-scanner
2108vega An open source platform to test the security of web applications. blackarch-webapp
2109veil A tool designed to generate metasploit payloads that bypass common anti-virus solutions. blackarch-automation
2110veles New open source tool for binary data analysis. blackarch-binary
2111veracrypt Disk encryption with strong security based on TrueCrypt blackarch-crypto
2112verinice Tool for managing information security. blackarch-misc
2113vfeed Open Source Cross Linked and Aggregated Local Vulnerability Database main repository. blackarch-misc
2114vhostscan A virtual host scanner that can be used with pivot tools, detect catch-all scenarios, aliases and dynamic default pages. blackarch-scanner
2115videosnarf A new security assessment tool for pcap analysis blackarch-scanner
2116vinetto A forensics tool to examine Thumbs.db files blackarch-forensic
2117viper A Binary analysis framework. blackarch-disassembler
2118viproy-voipkit VoIP Pen-Test Kit for Metasploit Framework blackarch-exploitation
2119virustotal Command-line utility to automatically lookup on VirusTotal all files recursively contained in a directory. blackarch-malware
2120visql Scan SQL vulnerability on target site and sites of on server. blackarch-scanner
2121visualize-logs A Python library and command line tools to provide interactive log visualization. blackarch-misc
2122vivisect A Python based static analysis and reverse engineering framework, Vdb is a Python based research/reversing focused debugger and programatic debugging API by invisigoth of kenshoto blackarch-debugger
2123vlan-hopping Easy 802.1Q VLAN Hopping blackarch-automation
2124vlany Linux LD_PRELOAD rootkit (x86 and x86_64 architectures). blackarch-backdoor
2125vmap A Vulnerability-Exploit desktop finder. blackarch-exploitation
2126vmcloak Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox. blackarch-malware
2127vnak Aim is to be the one tool a user needs to attack multiple VoIP protocols. blackarch-voip
2128vnc-bypauth Multi-threaded bypass authentication scanner for VNC smaller than v4.1.1 servers. blackarch-cracker
2129vncrack What it looks like: crack VNC. blackarch-cracker
2130voiper A VoIP security testing toolkit incorporating several VoIP fuzzers and auxilliary tools to assist the auditor. blackarch-voip
2131voiphopper A security validation tool that tests to see if a PC can mimic the behavior of an IP Phone. It rapidly automates a VLAN Hop into the Voice VLAN. blackarch-automation
2132voipong A utility which detects all Voice Over IP calls on a pipeline, and for those which are G711 encoded, dumps actual conversation to seperate wave files. blackarch-voip
2133volafox Mac OS X Memory Analysis Toolkit. blackarch-forensic
2134volatility Advanced memory forensics framework blackarch-forensic
2135volatility-extra Volatility plugins developed and maintained by the community. blackarch-forensic
2136voltron UI for GDB, LLDB and Vivisect's VDB. blackarch-debugger
2137vpnpivot Explore the network using this tool. blackarch-recon
2138vsaudit VOIP Security Audit Framework. blackarch-voip
2139vscan HTTPS / Vulnerability scanner. blackarch-scanner
2140vstt VSTT is a multi-protocol tunneling tool. It accepts input by TCP stream sockets and FIFOs, and can send data via TCP, POP3, and ICMP tunneling. blackarch-tunnel
2141vsvbp Black box tool for Vulnerability detection in web applications. blackarch-webapp
2142vulmap Vulmap Online Local Vulnerability Scanners Project blackarch-scanner
2143vulnerabilities-spider A tool to scan for web vulnerabilities. blackarch-webapp
2144vulnx Cms and vulnerabilites detector & An intelligent bot auto shell injector. blackarch-webapp
2145vuls Vulnerability scanner for Linux/FreeBSD, agentless, written in Go. blackarch-scanner
2146vulscan A module which enhances nmap to a vulnerability scanner blackarch-scanner
2147w13scan Passive Security Scanner. blackarch-webapp
2148w3af Web Application Attack and Audit Framework. blackarch-fuzzer
2149wafninja A tool which contains two functions to attack Web Application Firewalls. blackarch-webapp
2150wafpass Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF. blackarch-webapp
2151wafw00f Identify and fingerprint Web Application Firewall (WAF) products protecting a website. blackarch-scanner
2152waidps Wireless Auditing, Intrusion Detection & Prevention System. blackarch-wireless
2153waldo A lightweight and multithreaded directory and subdomain bruteforcer implemented in Python. blackarch-recon
2154wapiti A vulnerability scanner for web applications. It currently search vulnerabilities like XSS, SQL and XPath injections, file inclusions, command execution, LDAP injections, CRLF injections... blackarch-fuzzer
2155wascan Web Application Scanner. blackarch-webapp
2156wavemon Ncurses-based monitoring application for wireless network devices blackarch-wireless
2157waybackpack Download the entire Wayback Machine archive for a given URL. blackarch-webapp
2158wcc The Witchcraft Compiler Collection. blackarch-binary
2159wce A security tool to list logon sessions and add, change, list and delete associated credentials (ex.: LM/NT hashes, plaintext passwords and Kerberos tickets). blackarch-windows
2160web-soul A plugin based scanner for attacking and data mining web sites written in Perl. blackarch-webapp
2161web2ldap Full-featured LDAP client running as web application. blackarch-misc
2162webacoo Web Backdoor Cookie Script-Kit. blackarch-backdoor
2163webanalyze Port of Wappalyzer (uncovers technologies used on websites) in go to automate scanning. blackarch-webapp
2164webborer A directory-enumeration tool written in Go. blackarch-webapp
2165webenum Tool to enumerate http responses using dynamically generated queries and more. Useful for penetration tests against web servers. blackarch-scanner
2166webexploitationtool A cross platform web exploitation toolkit. blackarch-exploitation
2167webfixy On-the-fly decryption proxy for MikroTik RouterOS WebFig sessions. blackarch-proxy
2168webhandler A handler for PHP system functions & also an alternative 'netcat' handler. blackarch-webapp
2169webhunter Tool for scanning web applications and networks and easily completing the process of collecting knowledge. blackarch-scanner
2170webpwn3r A python based Web Applications Security Scanner. blackarch-scanner
2171webrute Web server directory brute forcer. blackarch-scanner
2172webscarab Framework for analysing applications that communicate using the HTTP and HTTPS protocols blackarch-fuzzer
2173websearch Search vhost names given a host range. Powered by Bing.. blackarch-recon
2174webshag A multi-threaded, multi-platform web server audit tool. blackarch-fuzzer
2175webshells Web Backdoors. blackarch-backdoor
2176webslayer A tool designed for brute forcing Web Applications. blackarch-webapp
2177websockify WebSocket to TCP proxy/bridge. blackarch-networking
2178webspa A web knocking tool, sending a single HTTP/S to run O/S commands. blackarch-backdoor
2179websploit An Open Source Project For, Social Engineering Works, Scan, Crawler & Analysis Web, Automatic Exploiter, Support Network Attacks blackarch-exploitation
2180webtech Identify technologies used on websites. blackarch-webapp
2181webxploiter An OWASP Top 10 Security scanner. blackarch-webapp
2182weebdns DNS Enumeration with Asynchronicity. blackarch-recon
2183weeman HTTP Server for phishing in python. blackarch-social
2184weevely Weaponized web shell. blackarch-webapp
2185wesng Windows Exploit Suggester - Next Generation. blackarch-exploitation
2186wfuzz Utility to bruteforce web applications to find their not linked resources. blackarch-fuzzer
2187whapa WhatsApp Parser Tool. blackarch-misc
2188whatbreach OSINT tool to find breached emails and databases. blackarch-social
2189whatportis A command to search port names and numbers. blackarch-misc
2190whatsmyname Tool to perform user and username enumeration on various websites. blackarch-webapp
2191whatwaf Detect and bypass web application firewalls and protection systems. blackarch-webapp
2192whatweb Next generation web scanner that identifies what websites are running. blackarch-recon
2193whichcdn Tool to detect if a given website is protected by a Content Delivery Network. blackarch-webapp
2194whitewidow SQL Vulnerability Scanner. blackarch-scanner
2195wi-feye An automated wireless penetration testing tool written in python, its designed to simplify common attacks that can be performed on wifi networks so that they can be executed quickly and easily. blackarch-wireless
2196wifi-honey A management tool for wifi honeypots. blackarch-honeypot
2197wifi-monitor Prints the IPs on your local network that're sending the most packets. blackarch-sniffer
2198wifi-pumpkin Framework for Rogue Wi-Fi Access Point Attack. blackarch-wireless
2199wifibroot A WiFi Pentest Cracking tool for WPA/WPA2 (Handshake, PMKID, Cracking, EAPOL, Deauthentication). blackarch-wireless
2200wifichannelmonitor A utility for Windows that captures wifi traffic on the channel you choose, using Microsoft Network Monitor capture driver. blackarch-windows
2201wificurse WiFi jamming tool. blackarch-wireless
2202wifijammer A python script to continuosly jam all wifi clients within range. blackarch-wireless
2203wifiphisher Fast automated phishing attacks against WPA networks. blackarch-wireless
2204wifiscanmap Another wifi mapping tool. blackarch-wireless
2205wifitap WiFi injection tool through tun/tap device. blackarch-wireless
2206wifite Tool to attack multiple WEP and WPA encrypted networks at the same time blackarch-wireless
2207wig WebApp Information Gatherer. blackarch-webapp
2208wikigen A script to generate wordlists out of wikipedia pages. blackarch-automation
2209wildpwn Unix wildcard attacks. blackarch-exploitation
2210windivert A user-mode packet capture-and-divert package for Windows. blackarch-windows
2211windows-exploit-suggester This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. blackarch-recon
2212windows-privesc-check Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems. blackarch-windows
2213windowsspyblocker Block spying and tracking on Windows. blackarch-windows
2214winexe Remotely execute commands on Windows NT/2000/XP/2003 systems. blackarch-misc
2215winfo Uses null sessions to remotely try to retrieve lists of and information about user accounts, workstation/interdomain/server trust accounts, shares (also hidden), sessions, logged in users, and password/lockout policy, from Windows NT/2000/XP. blackarch-windows
2216winhex Hex Editor and Disk Editor. blackarch-windows
2217winregfs Windows Registry FUSE filesystem. blackarch-misc
2218winrelay A TCP/UDP forwarder/redirector that works with both IPv4 and IPv6. blackarch-windows
2219wireless-ids Ability to detect suspicious activity such as (WEP/WPA/WPS) attack by sniffing the air for wireless packets. blackarch-wireless
2220wireshark-cli Network traffic and protocol analyzer/sniffer - CLI tools and data files blackarch-sniffer
2221wireshark-qt Network traffic and protocol analyzer/sniffer - Qt GUI blackarch-sniffer
2222wirouter-keyrec A platform independent software to recover the default WPA passphrases of the supported router models blackarch-wireless
2223witchxtool A perl script that consists of a port scanner, LFI scanner, MD5 bruteforcer, dork SQL injection scanner, fresh proxy scanner, and a dork LFI scanner. blackarch-webapp
2224wlan2eth Re-writes 802.11 captures into standard Ethernet frames. blackarch-wireless
2225wmat Automatic tool for testing webmail accounts. blackarch-cracker
2226wnmap A shell script written with the purpose to automate and chain scans via nmap. You can run nmap with a custom mode written by user and create directories for every mode with the xml/nmap files inside. blackarch-automation
2227wol-e A suite of tools for the Wake on LAN feature of network attached computers. blackarch-misc
2228wolpertinger A distributed portscanner. blackarch-scanner
2229wordbrutepress Python script that performs brute forcing against WordPress installs using a wordlist. blackarch-cracker
2230wordlistctl Fetch, install and search wordlist archives from websites and torrent peers. blackarch-misc
2231wordlister A simple wordlist generator and mangler written in python. blackarch-misc
2232wordpot A Wordpress Honeypot. blackarch-honeypot
2233wordpress-exploit-framework A Ruby framework for developing and using modules which aid in the penetration testing of WordPress powered websites and systems. blackarch-webapp
2234wordpresscan WPScan rewritten in Python + some WPSeku ideas. blackarch-scanner
2235wpa-bruteforcer Attacking WPA/WPA encrypted access point without client. blackarch-wireless
2236wpa2-halfhandshake-crack A POC to show it is possible to capture enough of a handshake with a user from a fake AP to crack a WPA2 network without knowing the passphrase of the actual AP. blackarch-wireless
2237wpbf Multithreaded WordPress brute forcer. blackarch-cracker
2238wpbrute-rpc Tool for amplified bruteforce attacks on wordpress based website via xmlrcp API. blackarch-cracker
2239wpbullet A static code analysis for WordPress (and PHP). blackarch-code-audit
2240wpforce Wordpress Attack Suite. blackarch-webapp
2241wpintel Chrome extension designed for WordPress Vulnerability Scanning and information gathering. blackarch-webapp
2242wpscan Black box WordPress vulnerability scanner blackarch-webapp
2243wpseku Simple Wordpress Security Scanner. blackarch-webapp
2244wpsik WPS scan and pwn tool. blackarch-wireless
2245wpsweep A simple ping sweeper, that is, it pings a range of IP addresses and lists the ones that reply. blackarch-windows
2246wreckuests Yet another one hard-hitting tool to run DDoS atacks with HTTP-flood. blackarch-dos
2247ws-attacker A modular framework for web services penetration testing. blackarch-webapp
2248wscript Emulator/tracer of the Windows Script Host functionality. blackarch-code-audit
2249wsfuzzer A Python tool written to automate SOAP pentesting of web services. blackarch-fuzzer
2250wssip Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa. blackarch-webapp
2251wsuspect-proxy A tool for MITM'ing insecure WSUS connections. blackarch-exploitation
2252wups An UDP port scanner for Windows. blackarch-windows
2253wuzz Interactive cli tool for HTTP inspection. blackarch-webapp
2254wxhexeditor A free hex editor / disk editor for Linux, Windows and MacOSX. blackarch-binary
2255wyd Gets keywords from personal files. IT security/forensic tool. blackarch-cracker
2256x-scan A general network vulnerabilities scanner for scanning network vulnerabilities for specific IP address scope or stand-alone computer by multi-threading method, plug-ins are supportable. blackarch-windows
2257x64dbg An open-source x64/x32 debugger for windows. blackarch-windows
2258xattacker Website Vulnerability Scanner & Auto Exploiter. blackarch-webapp
2259xcat A command line tool to automate the exploitation of blind XPath injection vulnerabilities. blackarch-exploitation
2260xcavator Man-In-The-Middle and phishing attack tool that steals the victim's credentials of some web services like Facebook. blackarch-sniffer
2261xcname A tool for enumerating expired domains in CNAME records. blackarch-scanner
2262xerosploit Efficient and advanced man in the middle framework. blackarch-networking
2263xfltreat Tunnelling framework. blackarch-tunnel
2264xorbruteforcer Script that implements a XOR bruteforcing of a given file, although a specific key can be used too. blackarch-crypto
2265xorsearch Program to search for a given string in an XOR, ROL or ROT encoded binary file. blackarch-crypto
2266xortool A tool to analyze multi-byte xor cipher. blackarch-crypto
2267xpire-crossdomain-scanner Scans crossdomain.xml policies for expired domain names. blackarch-scanner
2268xpl-search Search exploits in multiple exploit databases!. blackarch-exploitation
2269xplico Internet Traffic Decoder. Network Forensic Analysis Tool (NFAT). blackarch-forensic
2270xprobe2 An active OS fingerprinting tool. blackarch-fingerprint
2271xray A tool for recon, mapping and OSINT gathering from public networks. blackarch-recon
2272xrop Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC. blackarch-exploitation
2273xspear Powerfull XSS Scanning and Parameter analysis tool&gem. blackarch-webapp
2274xspy A utility for monitoring keypresses on remote X servers blackarch-keylogger
2275xsrfprobe The Prime Cross Site Request Forgery Audit and Exploitation Toolkit. blackarch-webapp
2276xsscon Simple XSS Scanner tool. blackarch-webapp
2277xsscrapy XSS spider - 66/66 wavsep XSS detected. blackarch-webapp
2278xsser A penetration testing tool for detecting and exploiting XSS vulnerabilites. blackarch-webapp
2279xssless An automated XSS payload generator written in python. blackarch-webapp
2280xsspy Web Application XSS Scanner. blackarch-webapp
2281xsss A brute force cross site scripting scanner. blackarch-webapp
2282xssscan Command line tool for detection of XSS attacks in URLs. Based on ModSecurity rules from OWASP CRS. blackarch-webapp
2283xsssniper An automatic XSS discovery tool blackarch-webapp
2284xsstracer Python script that checks remote web servers for Clickjacking, Cross-Frame Scripting, Cross-Site Tracing and Host Header Injection. blackarch-scanner
2285xsstrike An advanced XSS detection and exploitation suite. blackarch-webapp
2286xssya A Cross Site Scripting Scanner & Vulnerability Confirmation. blackarch-webapp
2287xwaf Automatic WAF bypass tool. blackarch-webapp
2288xxeinjector Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods. blackarch-exploitation
2289yaaf Yet Another Admin Finder. blackarch-webapp
2290yaf Yet Another Flowmeter. blackarch-networking
2291yara Tool aimed at helping malware researchers to identify and classify malware samples blackarch-malware
2292yasat Yet Another Stupid Audit Tool. blackarch-scanner
2293yasca Multi-Language Static Analysis Toolset. blackarch-code-audit
2294yasuo A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network. blackarch-webapp
2295yate-bts An open source GSM Base Station software. blackarch-radio
2296yawast The YAWAST Antecedent Web Application Security Toolkit. blackarch-webapp
2297yay Yet another yogurt. Pacman wrapper and AUR helper written in go. blackarch-misc
2298ycrawler A web crawler that is useful for grabbing all user supplied input related to a given website and will save the output. It has proxy and log file support. blackarch-webapp
2299yersinia A network tool designed to take advantage of some weakness in different network protocols. blackarch-networking
2300yeti A platform meant to organize observables, indicators of compromise, TTPs, and knowledge on threats in a single, unified repository. blackarch-defensive
2301yinjector A MySQL injection penetration tool. It has multiple features, proxy support, and multiple exploitation methods. blackarch-exploitation
2302ysoserial A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. blackarch-webapp
2303zackattack A new tool set to do NTLM Authentication relaying unlike any other tool currently out there. blackarch-networking
2304zaproxy Integrated penetration testing tool for finding vulnerabilities in web applications blackarch-webapp
2305zarp A network attack tool centered around the exploitation of local networks. blackarch-exploitation
2306zeratool Automatic Exploit Generation (AEG) and remote flag capture for exploitable CTF problems. blackarch-exploitation
2307zerowine Malware Analysis Tool - research project to dynamically analyze the behavior of malware blackarch-malware
2308zeus AWS Auditing & Hardening Tool. blackarch-defensive
2309zeus-scanner Advanced dork searching utility. blackarch-recon
2310zgrab Grab banners (optionally over TLS). blackarch-recon
2311zgrab2 Go Application Layer Scanner. blackarch-fingerprint
2312zipdump ZIP dump utility. blackarch-forensic
2313zirikatu Fud Payload generator script. blackarch-exploitation
2314zizzania Automated DeAuth attack. blackarch-wireless
2315zmap Fast network scanner designed for Internet-wide network surveys blackarch-scanner
2316zssh SSH and Telnet client with ZMODEM file transfer capability blackarch-networking
2317zulu A light weight 802.11 wireless frame generation tool to enable fast and easy debugging and probing of 802.11 networks. blackarch-cracker
2318zulucrypt Front end to cryptsetup and tcplay and it allows easy management of encrypted block devices. blackarch-crypto
2319zykeys Demonstrates how default wireless settings are derived on some models of ZyXEL routers. blackarch-wireless
2320zzuf Transparent application input fuzzer blackarch-fuzzer