1934 Open source projects that are alternatives of or similar to Active Directory Exploitation Cheat Sheet

Create and generate cheat sheets using React

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

Cheat-Sheet of tools for penetration testing

Get GTFOBins info about a given exploit from the command line

Automated script to run all modules for a specified list of domains, netblocks or company name

A tool that automates the process of enumeration

The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow

Modern tactical exploitation toolkit.

A web front-end for password cracking and analytics

Simple Server Side Request Forgery services enumeration tool.

Active directory Join script for Ubuntu, Debian, CentOS, Linux Mint, Fedora, Kali, Elementary OS and Raspbian with built in failchcheck and debugmode for Ubuntu. "The most advanced and updated AD join script on GITHUB for Linux"

A collection of public offensive and defensive security related scripts for InfoSec students.

Message Queue & Broker Injection tool

A Tool for Domain Flyovers

Executes common PowerSploit Powerview functions then combines output into a spreadsheet for easy analysis.

Yet Another PHP Shell - The most complete PHP reverse shell

cms识别

Web Recon & Exploitation Tool.

Offensive Reverse Shell (Cheat Sheet)

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Cheat Sheets for Arduino Programming Language

A pentesting tool inspired by mr robot and derived by zphisher

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Attify OS - Distro for pentesting IoT devices

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Free Security and Hacking eBooks

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Web Application Security Scanner Framework

A MongoDB importer and API for Project Sonars DNS datasets

CMS auto detect and exploit.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

平常看到好的渗透hacking工具和多领域效率工具的集合

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

A fast web directory/file enumeration tool written in Rust

Cheatsheet to exploit and learn SQL Injection.

A list of web application security

👻 A LAN dropbox chatbot controllable via Telegram

The Shadow Attack Framework

Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, instagram accounts, ssh servers, microsoft rdp clients and gmail accounts

OSINT

network reconnaissance toolkit

A tool to automate penetration tests

Privilege Escalation Enumeration Script for Windows

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Reverse proxies cheatsheet

Gorsair hacks its way into remote docker containers that expose their APIs

Exploit Pack -The next generation exploit framework

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

记录自己编写、修改的部分工具

Security Tool to Look For Interesting Files in S3 Buckets

People tracker on the Internet: OSINT analysis and research tool by Jose Pino