1396 Open source projects that are alternatives of or similar to Awesome Ethical Hacking Resources

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Sifter aims to be a fully loaded Op Centre for Pentesters

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Hacking tools

An HTTP/HTTPS intercept proxy written in Go.

Ruby on Rails Phishing Framework

Content for hackingthe.cloud

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

my oscp prep collection

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Penetration Testing notes, resources and scripts

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Automated NoSQL database enumeration and web application exploitation tool.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

HydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing

Don't let buffer overflows overflow your mind

Hospitality for Hackers

ANDRAX The first and unique Penetration Testing platform for Android smartphones

OSINT Tool: Generate username lists for companies on LinkedIn

Cameradar hacks its way into RTSP videosurveillance cameras

Vagrant VirtualBox environment for conducting an internal network penetration test

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

Metasploit custom modules, plugins, resource script and.. awesome metasploit collection

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Pentest: Subdomains enumeration tool for penetration testers.

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Top 100 Hacking & Security E-Books (Free Download)

Collection of resources for my preparation to take the OSEE certification.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

The New Hacking Framework

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

CMS auto detect and exploit.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

network reconnaissance toolkit

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Idiomatic nmap library for go developers

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Web path scanner

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Useful tools and scripts during Penetration Testing engagements

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

A simple tool for interacting with OWASP ZAP from the commandline.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.