1517 Open source projects that are alternatives of or similar to Badkarma

Top 100 Hacking & Security E-Books (Free Download)

Nmap and NSE command line wrapper in the style of Metasploit

hydra

Pentest: Subdomains enumeration tool for penetration testers.

Perform automated network reconnaissance scans

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

An OSINT tool to gather information about the real owner of a phone number

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

This Script will help you to gather information about your victim or friend.

Idiomatic nmap library for go developers

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

OSINT

Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.

Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

an asynchronous target enumeration tool

A tool to automate penetration tests

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Hacker101 CTF Writeup

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

👨‍💻 Impress your friends by pretending to be a real hacker

Unique wordlist generator of unique wordlists.

Work in progress...

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Quick SQL Scanner, Dorker, Webshell injector PHP

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Search shodan without any knowledge about its queries

Framework RapidPayload - Metasploit Payload Generator | Crypter FUD AntiVirus Evasion

🔎 Find usernames and download their data across social media.

Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).

Complete Listing and Usage of Tools used for Ethical Hacking

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Related subdomains finder

Exploits and Security Tools Framework 2.0.1

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Multi source CVE/exploit parser.

Hacking Tools Z0172CK

REST API backend for Reconmap

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

Automated Web Recon Shell Scripts

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

Automated Pentest Tools Designed For Parrot Linux

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

A cross-platform python based utility for information gathering and penetration testing automation!

Go library for credentials recovery

No description or website provided.

Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!