1594 Open source projects that are alternatives of or similar to Bitp0wn

An automated bitcoin wallet collider that brute forces random wallet addresses

AVAX is a small, modern and fast console application for decrypting passwords with certain options.

BruteForce Tool For both Instagram and Facebook

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Trading environnement for RL agents, backtesting and training.

phpMyAdmin Authentication Bruteforce Tool

Instagram Brute Forcer

Juniper Junos Space (CVE-2020-1611) (PoC)

Simple HS256 JWT token brute force cracker

Proofs-of-concept

hydra

Security-related PHP7 OPcache abuse tools and demo

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

PHP library to generate BTC addresses and signatures from private keys.

Common problems of dynamic programming methods and techniques, including prerequisites, for competitive programmers.

Instagram multi-bruteforce Platfrom

Automated Bitcoin wallet generator that with mnemonic and passphrases bruteforces wallet addresses

🛅 Passwords using personal information

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

Bruteforce database

Secure Shell Bruteforcer — A faster & simpler way to bruteforce SSH server

CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Vulnerability Notes, PoC Exploits and Write-Ups for security issues disclosed by tintinweb

image processing codes to understand algorithm

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

🌱 Construct Merkle Trees and verify proofs in JavaScript.

A simple library to recover the private key of ECDSA and DSA signatures sharing the same nonce k and therefore having identical signature parameter r

generates weak passwords based on current date

Automated WPA/WPA2 PSK attack tool.

CVE-2020-11651: Proof of Concept

Powerful mutable web directory fuzzer to bruteforce existing and/or hidden files or directories.

Password lists with top passwords to optimize bruteforce attacks

Proof -Of-Concept Brute Force Login on a web-site with a good dictionary of words

bruteforcing gmail (TLS/SSL)

Simple directory brute-force tool written with python.

simple discord nitro code generator and checker written in c#

An SNMPv3 User Enumerator and Attack tool

Instagram bruteforce tool

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

A simple SSH bruteforce script targeting (not necessarily) Raspbian devices.

hacker, ready for more of our story ! 🚀

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

Web path scanner

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Poc Collected for study and develop

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Automated brute-forcing attack tool.

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

Misc. Public Reports of Penetration Testing and Security Audits.

💰 Cryptocurrency trading bot library with a simple example strategy (trading via Gemini).

Bindings to lib-secp256k1 for golang

Automatically brute force all services running on a target.