1379 Open source projects that are alternatives of or similar to Bbrecon

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Automated brute-forcing attack tool.

Find leaked emails with your passwords

🎬 A curated list of movies every hacker & cyberpunk must watch.

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Subdomain Takeover tool written in Go

FAQ del mundo de la seguridad informática en español.

Message Queue & Broker Injection tool

Automating XSS using Bash

Explore Indicators of Compromise Automatically

Amazon S3 bucket spelunking!

📡 A python program to create a fake AP and sniff data.

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

🪓 a multi-threaded, low-bandwidth HTTP DOS tool

All in One Termux Os..!! (New)

OnionSearch is a script that scrapes urls on different .onion search engines.

Security control framework mappings to MITRE ATT&CK provide a critically important resource for organizations to assess their security control coverage against real-world threats and provide a bridge for integrating ATT&CK-based threat information into the risk management process.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Bringing you the best of the worst files on the Internet.

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

A tool to check a bunch of URLs that contain reflecting params.

Fast browser-based network discovery module

Find exploits in local and online databases instantly

DNS-Discovery is a multithreaded subdomain bruteforcer.

Miscellaneous exploit code

A list of payload and bypass lists for penetration testing and red team infrastructure build.

Pillage filesystems for sensitive information with Go.

CVE-2017-9506 - SSRF

Find usernames across over 170 social networks - Fast & flexible remake of sdushantha/sherlock

🔒 A curated checklist of 300+ tips for protecting digital security and privacy in 2021

Awesome hacking is an awesome collection of hacking tools.

✔️ CTF problems and solutions solved by Qwaz

This custom Fail2Ban filter and jail will deal with all scans for common Wordpress, Joomla and other Web Exploits being scanned for by automated bots and those seeking to find exploitable web sites.

Human and machine readable web vulnerability testing format

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Python network worm that spreads on the local network and gives the attacker control of these machines.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

ssh management tool to provides commandline access to a remote system running SSH server

Riscure Hack Me embedded hardware CTF 2017-2018.

Adds a customizable "Send to..."-context-menu to your BurpSuite.

XSHOCK Shellshock Exploit

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Trace Labs OSINT Linux Distribution based on Kali.

A rust based cross-platform ECU diagnostics and car hacking application, utilizing the passthru protocol

Linux enumeration tool for pentesting and CTFs with verbosity levels

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.

The most complete open-source tool for Twitter intelligence analysis

Code repository for the paper "Adversarial Deep Learning for Robust Detection of Binary Encoded Malware"

pdf,txt,djvu, various useful books

Paskto - Passive Web Scanner

Let's find someone's account

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

An OSINT Metadata analyzing tool that filters through tags and creates reports

web scanner - exploitation - information gathering

Scanning APK file for URIs, endpoints & secrets.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.