Top 861 hacking open source projects

Enumerate information from NTLM authentication enabled web endpoints 🔎

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Clear all your logs in [linux/windows] servers 🛡️

Install And Use Kali Linux With Gui In Termux

Raptor - WAF - Web application firewall using DFA [ Current version ] - Beta

The linux choice collection tools

An HTTP based RAT (Remote Administration Tool) that allows you to remotely control devices from your browser

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Hatch is a brute force tool that is used to brute force most websites

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

Latest Ver: 1.7; Default Menu Key is F1; Charlatano's Successor; dn

Git All the Payloads! A collection of web attack payloads.

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

Tangalanga: the Zoom conference scanner hacking tool

Mercury is a hacking tool used to collect information and use the information to further hurt the target

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

Generate Professional Phishing Emails Fast And Easy

Rubyfu, where Ruby goes evil!

Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".

Cameradar hacks its way into RTSP videosurveillance cameras

Automated Adversary Emulation Platform

The Lost Nintendo DS Television Output, brought back to life

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

Ronin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits or Payloads, Scanners, etc, via Repositories.

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Run executables from memory, over the network, on Windows, Linux, OpenVMS... routers... spaceships... toasters etc.

Really quickly build APKs on handheld device (smartphone or tablet) in Amazon, Android, Chromebook and Windows📲 See https://buildapks.github.io/docsBuildAPKs/setup to start building APKs.

🐐 GoAT (Golang Advanced Trojan) is a trojan that uses Twitter as a C&C server

Some Reverse Engineering Tutorials for Beginners

CTF竞赛权威指南

Xss Payload Generator ~ Xss Scanner ~ Xss Dork Finder

Vagrant VirtualBox environment for conducting an internal network penetration test

Rockyou for web fuzzing

Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.

BruteDum - Brute Force attacks SSH, FTP, Telnet, PostgreSQL, RDP, VNC with Hydra, Medusa and Ncrack

New Interface And Loading Screen For Termux Users

Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

Official Black Hat Arsenal Security Tools Repository

PandwaRF: RF analysis tool with a sub-1 GHz wireless transceiver controlled by a smartphone or

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

CTF Cheatsheet

CMS Detection and Exploit Kit based on Whatcms.org API

OSINT Project

Text, samples and website for my 'Effective Shell' series.

retrieve information via O365 with a valid cred

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

Project transferred to: https://github.com/taielab/awesome-hacking-lists

🌲 Aimbot powered by real-time object detection with neural networks, GPU accelerated with Nvidia. Optimized for use with CS:GO.

Windows Remote Administration Tool via Telegram. Written in Python

Hawkeye filesystem analysis tool

Plug-and-play bash script for sniffing 802.11 probes requests 👃

Metasploit custom modules, plugins, resource script and.. awesome metasploit collection

安全编排与自动化响应平台

macOS FileVault cracking tool

Like nmap for mapping wifi networks you're not connected to, plus device tracking

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Small tool for generating ropchains using unicorn and z3

facebook hacking toolkit

List of Awesome Windows Security Resources