| unix-privesc-check |
1.4 |
Tries to find misconfigurations that could allow local unprivilged users to escalate privileges to other users or to access local apps (e.g. databases) |
archstrike |
| upnpscan |
0.4 |
Scans the LAN or a given address range for UPnP capable devices. |
archstrike |
| urlcrazy |
0.5 |
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage. |
archstrike |
| usbkill-git |
r213.d3df79e |
An anti-forensic kill-switch that waits for a change on your USB ports and then immediately shuts down your computer. |
archstrike |
| username-anarchy |
0.5 |
Tools for generating usernames when penetration testing |
archstrike |
| vbrute-git |
r1.11dda8b |
Virtual hosts brute forcer. Specify file containing domains and file containing IPs and will attempt to connect to IP with specific domain. |
archstrike |
| vbscan-git |
20190616.r39 |
Black Box vBulletin Vulnerability Scanner |
archstrike |
| vega |
1.0.devel.130 |
An open source platform to test the security of web applications |
archstrike |
| videosnarf |
0.63 |
A new security assessment tool for pcap analyze |
archstrike |
| vncrack |
1.21 |
What it looks like: crack VNC. |
archstrike |
| voiphopper |
2.04 |
A security validation tool that tests to see if a PC can mimic the behavior of an IP Phone. It rapidly automates a VLAN Hop into the Voice VLAN. |
archstrike |
| voipong |
2.0 |
A utility which detects all Voice Over IP calls on a pipeline, and for those which are G711 encoded, dumps actual conversation to seperate wave files. |
archstrike |
| wafw00f |
2.1.0 |
Identify and fingerprint Web Application Firewall (WAF) products protecting a website |
archstrike |
| wapiti |
3.1.0 |
A vulnerability scanner for web applications. It currently search vulnerabilities like XSS, SQL and XPath injections, file inclusions, command execution, LDAP injections, CRLF injections... |
archstrike |
| waybackpack |
0.4.0 |
Command-line tool that lets you download the entire Wayback Machine archive for a given URL. |
archstrike |
| wcc-git |
20180405.r55 |
The Witchcraft Compiler Collection |
archstrike |
| webacoo |
0.2.3 |
Web Backdoor Cookie Script-Kit |
archstrike |
| webrute |
3.3 |
Web server directory brute forcer. |
archstrike |
| weevely |
4.0.1 |
A Stealth tiny web shell that provides a telnet-like console. |
archstrike |
| wepbuster |
1.0.beta0.7 |
A script for automating aircrack-ng |
archstrike |
| wfuzz |
3.1.0 |
Utility to bruteforce web applications to find their not linked resources |
archstrike |
| whatweb-git |
r4908.eeca4cd3 |
Next generation web scanner that identifies what websites are running. |
archstrike |
| wifi-honey |
1.0 |
A management tool for wifi honeypots |
archstrike |
| wificurse |
0.3.9 |
WiFi Jammer via fake deauthentication packets |
archstrike |
| wifiphisher-git |
20220517.r795 |
A tool for Fast automated phishing attacks against WPA networks |
archstrike |
| wig-git |
r574.d5ddd91 |
WebApp Information Gatherer |
archstrike |
| windows-binaries |
0.6.9 |
A colleciton of pentesting Windows binaries |
archstrike |
| windows-exploit-suggester-git |
20170217.r41 |
Compares a target patch levels against the Microsoft vulnerability database to detect potential missing patches on the target. Also notifies the user if there are public exploits and Metasploit modules available for missing bulletins |
archstrike |
| wlan2eth |
1.3 |
re-writes 802.11 captures into standard Ethernet frames. |
archstrike |
| wuzz |
0.5.0 |
Interactive cli tool for HTTP inspection |
archstrike |
| x3270 |
3.6ga6 |
An IBM 3270 terminal emulator for the X Window System patched for birp(https://github.com/sensepost/birp) |
archstrike |
| xcat |
1.1.0 |
A command line tool to automate the exploitation of blind XPath injection vulnerabilities |
archstrike |
| xcavator-git |
r5.bd9e2d8 |
man-in-the-middle and phishing attack tool that steals the victim's credentials of some web services like Facebook |
archstrike |
| xmount |
0.7.6 |
Tool to crossmount between multiple input and output harddisk image files |
archstrike |
| xorsearch |
1.11.2 |
Program to search for a given string in an XOR, ROL or ROT encoded binary file. |
archstrike |
| xorstrings |
0.0.1 |
A combination of XORSearch tool and the well-known strings command to search for a given string in an XOR, ROL or ROT encoded binary file. |
archstrike |
| xprobe2 |
0.3 |
An active OS fingerprintinging tool |
archstrike |
| xspy |
1.0c |
A utility for monitoring keypresses on remote X servers |
archstrike |
| xss-callback-git |
r14.6a2bb85 |
A lightweight HTTP Server that exploits XSS victim's session automatically |
archstrike |
| xsser |
1.8.3 |
A penetration testing tool for detecting and exploiting XSS vulnerabilites. |
archstrike |
| xssf |
3.0 |
A Cross-Site Scripting Framework for metasploit |
archstrike |
| xssless-git |
r45.8e7ebe1 |
An automated XSS payload generator written in python. |
archstrike |
| xsss |
0.40b |
brute force cross site scripting scanner |
archstrike |
| xssscan-git |
r17.7f1ea90 |
Command line tool for detection of XSS attacks in URLs. Based on ModSecurity rules from OWASP CRS. |
archstrike |
| xsstrike |
3.1.5 |
Most advanced XSS detection suite |
archstrike |
| yaf |
2.12.2 |
Yet Another Flowmeter |
archstrike |
| yararules-git |
20211118.r1786 |
A Repository of yara rules |
archstrike |
| yasat |
848 |
A simple stupid audit tool |
archstrike |
| yersinia |
0.8.2 |
A network tool designed to take advantage of some weakness in different network protocols |
archstrike |
| zeek |
4.0.3 |
An Open Source Network Security Monitoring Tool (IDS) |
archstrike |
| zgrab |
0.0.1 |
Application layer scanner that operates with ZMap |
archstrike |