1044 Open source projects that are alternatives of or similar to 1earn

备考 OSCP 的各种干货资料/渗透测试干货资料

Automation for internal Windows Penetrationtest / AD-Security

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Venom - A Multi-hop Proxy for Penetration Testers

红队综合渗透框架

Collection of quality safety articles. Awesome articles.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Webshell Manager

Docker images for infosec tools

A wrapper for Nmap to quickly run network scans

Passwords Recovery Tool

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

A poorman's proxycannon and botnet, using docker, ovpn files, and a dante socks5 proxy

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

🔐 Docker Container for Penetration Testing & Security

Quick SQL Scanner, Dorker, Webshell injector PHP

generates weak passwords based on current date

Blue Team detection lab created with Terraform and Ansible in Azure.

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

A tool for generating reverse shell payloads on the fly.

Multi source CVE/exploit parser.

Utility for hunting UAC bypasses or COM/DLL hijacks that alerts on the exported function that was consumed.

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Purple Team Exercise Framework

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

Test Blue Team detections without running any attack.

Open Redirect Payloads

红蓝对抗跨平台远控工具

Scan for and exploit Consul agents

Python AV Evasion Tools

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

PoC Command and Control Server. Interact with clients through a private web interface, add new users for team sharing and more.

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Pentesting/Bugbounty Dockerfiles.

集漏洞验证和任务运行的一个框架

Multi OTP Spam Amp/Paralell threads

Misc. Public Reports of Penetration Testing and Security Audits.

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

Offensive Reverse Shell (Cheat Sheet)

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

Web Recon & Exploitation Tool.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Bifrost C2. Open-source post-exploitation using Discord API

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Awesome cloud enumerator

Subdomain enumeration through various techniques

Network Pivoting Toolkit

A tool to automate penetration tests

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

🍓📡🍍Monitor illegal wireless network activities. (Fake Access Points), (WiFi Threats: KARMA Attacks, WiFi Pineapple, Similar SSID, OPN Network Density etc.)

linux-kernel-exploits Linux平台提权漏洞集合

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources