477 Open source projects that are alternatives of or similar to Badintent

A simple Burp extension for scanning stuffs in CTF

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

A pentesting tool inspired by mr robot and derived by zphisher

The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of information from the Burp Suite project as well as the flexible and dynamic on-the-fly modification of outgoing or incoming HTTP requests using Python scripts. Thus, Turbo Data Miner shall aid in gaining a better and fas…

tcp connection hijacker, rust rewrite of shijack

PowerAuth Mobile SDK for adds capability for authentication and transaction signing into the mobile apps (ios, watchos, android).

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Utilities for creating Burp Suite Extensions.

locate and attack Lync/Skype for Business

clojure实现burp插件，提供clj脚本加载环境

Quick utility to craft executables for pentesting and managing reverse shells

THE ESP8266 HONEYPOT

A repository of telemetry domains and URLs used by mobile location tracking, user profiling, targeted marketing and aggressive ads libraries.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Oversecured Vulnerable iOS App

Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.

Various analysis of Android stalkerware

A burp extender that recalculate signature value automatically after you modified request parameter value.

Burp extension intended to compact Burp extension tabs by hijacking them to own tab.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Keyfinder🔑 is a tool that let you find keys while surfing the web!

This Burp extension helps you to find usages of postMessage and recvMessage

Network Vulnerability Scanner

Port scanning and domain utility.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Command line tool that allows you to explore IoT devices by using Shodan API.

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

an easy pentesting tool.

Do some quick reconnaissance on a domain-based web-application

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

PHP function tracker

Facebook Write-ups, PoC, and exploitation codes:

Dynamic file detection tool based on crawler 基于爬虫的动态敏感文件探测工具

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

The Leading Security Assessment Framework for Android.

Hashtopolis - A Hashcat wrapper for distributed hashcracking

An extensible toolkit providing penetration testers an easy-to-use platform to deploy Access Points during penetration testing and red team engagements.

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

AWS Identity and Access Management Visualizer and Anomaly Finder

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

A bash script for recon and DOS attacks

Vagrant VirtualBox environment for conducting an internal network penetration test

GSM Assessment Toolkit - A security evaluation framework for GSM networks

A simple wrapper for C# tools

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Yet Another PHP Shell - The most complete PHP reverse shell

Enumerate and decrypt TeamViewer credentials from Windows registry

retrieve information via O365 with a valid cred

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Linux Rootkits (4.x Kernel)

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

Awesome Nmap Grep

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Flutter Reverse Engineering Framework

PowerAuth - Open-source solution for authentication, secure data storage and transport security in mobile banking.