1396 Open source projects that are alternatives of or similar to Awesome Ethical Hacking Resources

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A collection of hacking / penetration testing resources to make you better!

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Audit tool to find common vulnerabilities in PHP source code

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Next generation web scanner

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

A list of resources for those interested in getting started in bug bounties

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Free Security and Hacking eBooks

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Fully automated offensive security framework for reconnaissance and vulnerability scanning

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Everything needed for doing CTFs

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

A list of web application security

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

network reconnaissance toolkit

Idiomatic nmap library for go developers

Sifter aims to be a fully loaded Op Centre for Pentesters

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Pentest: Subdomains enumeration tool for penetration testers.

Web Application Security Scanner Framework

Top 100 Hacking & Security E-Books (Free Download)

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Tool Information Gathering Write By Python.

CMS auto detect and exploit.

Hacker101 CTF Writeup

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

The New Hacking Framework

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Useful tools and scripts during Penetration Testing engagements

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Hack the World using Termux

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Penetration Testing notes, resources and scripts

OSINT Tool: Generate username lists for companies on LinkedIn

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Scripts I use during pentest engagements.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Hacking Toolkit

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Attify OS - Distro for pentesting IoT devices

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.