A vast collection of security tools
Hacker101 is structured as a set of video lessons – some covering multiple topics, some covering a single one – and can be consumed in two different ways. You can either watch them in the order produced as in a normal class (§ Sessions), or you can watch individual videos (§ Vulnerabilities). If you’re new to security, we recommend the former; this provides a guided path through the content and covers more than just individual bugs.
Additionally, there are coursework levels where you can hunt for bugs and experiment with exploitation in practice. As you work through the content, try out the coursework to see what you can find!
Brute-Forcing from Nmap output - Automatically attempts default creds on found services.
Fsociety Hacking Tools Pack
A Penetration Testing Framework, you will have every script that a hacker needs
BetterCAP is a powerful, flexible and portable tool created to perform various types of MITM attacks against a network, manipulate HTTP, HTTPS and TCP traffic in realtime, sniff for credentials and much more.
This penetration testing tool allows an auditor to intercept SSH connections. A patch applied to the OpenSSH v7.5p1 source code causes it to act as a proxy between the victim and their intended SSH server; all plaintext passwords and sessions are logged to disk.
Of course, the victim's SSH client will complain that the server's key has changed. But because 99.99999% of the time this is caused by a legitimate action (OS re-install, configuration change, etc), many/most users will disregard the warning and continue on.
A tumblr that collects science fiction user interfaces