Free cross-platform password manager compatible with KeePass

World's fastest and most advanced password recovery utility

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

A native OS X KeePass client

🔑 stateless open source password manager

This is the official repo for John the Ripper, "Jumbo" version. The "bleeding-jumbo" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the "core" version of john this jumbo was based on (or newer) is found in the "master" branch (CVS: https://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/john/john/src/).

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Web Pentesting Fuzz 字典,一个就够了。

Simple user-authentication solution, embedded into a small framework.

Password protect a static HTML page

A collection of all the data i could extract from 1 billion leaked credentials from internet.

大型内网渗透扫描器&Cobalt Strike，Ladon7.0内置83个模块，包含信息收集/存活主机/IP扫描/端口扫描/服务识别/网络资产/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010、SMBGhost、Weblogic、ActiveMQ、Tomcat、Struts2系列，密码口令爆破(Mysql、Oracle、MSSQL)、FTP、SSH(Linux)、VNC、Windows(IPC、WMI、SMB、LDAP、SmbHash、WmiHash、Winrm),远程执行命令(wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Common User Passwords Profiler (CUPP)

GPG symmetric password manager

📭🔎 Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

Fullstack authentication and accounts-management for Javascript.

Legacy Browserpass repo, development is now happening at:

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat and John the Ripper.

Node.js bindings for Argon2 hashing algorithm

A self-service password management tool for Active Directory

macOS keychain cracking tool

Verify code input view. Support security type for password.短信验证码输入框，支持密文模式

A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440)

Bruteforce database

Web interface to change and reset password in an LDAP directory

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

pwm

Synchronous Readline for interactively running to have a conversation with the user via a console(TTY).

🔒Unified API for password hashing algorithms