896 Open source projects that are alternatives of or similar to Blackrat

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Python network worm that spreads on the local network and gives the attacker control of these machines.

DNS Rebinding Exploitation Framework

ParadoxiaRat : Native Windows Remote access Tool.

Quickly analyze and reverse engineer Android packages

OSINT Tool: Generate username lists for companies on LinkedIn

Black Worm Offical Repo

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

🔪 Leak git repositories from misconfigured websites

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

A curated list of awesome privilege escalation

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Advanced Web Shell

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Ruby on Rails Phishing Framework

Web path scanner

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

The best Hacking and PenTesting tools installer on the world

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🤖 The Modern Port Scanner 🤖

Idiomatic nmap library for go developers

My own OSCP guide

Extract endpoints from APK files

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

swiss army knife for hackers

Useful tools and scripts during Penetration Testing engagements

Penetration Testing notes, resources and scripts

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

Automatically Launch Google Hacking Queries Against A Target Domain

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Fast browser-based network discovery module

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Micro-framework for rapid development of reusable security tools

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Hacking Toolkit

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A simple keylogger for Windows, Linux and Mac

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

OSINT

👻 A LAN dropbox chatbot controllable via Telegram

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.