1264 Open source projects that are alternatives of or similar to Burpsuite Xkeys

Browse and search through nmap's NSE scripts.

Know the dangers of credential reuse attacks.

🪓 a multi-threaded, low-bandwidth HTTP DOS tool

unix SSH post-exploitation 1337 tool

🔥 A powerful MongoDB auditing and pentesting tool 🔥

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

internet monitoring osint telegram bot for windows

dnsub一款好用的子域名扫描工具

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Our OSCP repo: from popping shells to mental health.

Pwning the Nuro issued Huawei HG8045Q

DDOS Tool: To take down small websites with HTTP FLOOD. Port scanner: To know the open ports of a site. FTP Password Cracker: To hack file system of websites.. Banner Grabber: To get the service or software running on a port. (After knowing the software running google for its vulnerabilities.) Web Spider: For gathering web application hacking information. Email scraper: To get all emails related to a webpage IMDB Rating: Easy way to access the movie database. Both .exe(compressed as zip) and .py versions are available in files.

Content for hackingthe.cloud

Script samples from the book Pentesting Azure Applications (2018, No Starch Press)

Miscellaneous exploit code

Search people on the Internet.

Linset is a WPA/WPA2 phishing tool (evil twin)

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Pillage filesystems for sensitive information with Go.

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

✔️ CTF problems and solutions solved by Qwaz

Paskto - Passive Web Scanner

🔱 [ Phishing Made Easy ] 🔱 (In Beta)

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

OWASP D4N155 - Intelligent and dynamic wordlist using OSINT

This custom Fail2Ban filter and jail will deal with all scans for common Wordpress, Joomla and other Web Exploits being scanned for by automated bots and those seeking to find exploitable web sites.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

find out when and where someone is posting to reddit

ssh management tool to provides commandline access to a remote system running SSH server

XRay is a tool for recon, mapping and OSINT gathering from public networks.

🔥 Modern command line tool for malware creation on Windows

Riscure Hack Me embedded hardware CTF 2017-2018.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

pdf,txt,djvu, various useful books

Monitor twitter stream

A framework for pentesters that facilitates evil twin attacks as well as exploiting other wifi vulnerabilities

All in 1 Pakisthani Facebook Cloner [ 7/8/9/10/11 DIGIT ]

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

An OSINT Metadata analyzing tool that filters through tags and creates reports

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

Steganograpy in Python | Hide files or data in Image Files

Smart OSINT collection of common IOC types

OSINT tools catalog

Ransom0 is a open source ransomware made with Python, designed to find and encrypt user data.

The iOS Security Testing Framework

scan for NTLM directories

SMB Relay Attack Script

Program Uses Thread Execution Hijacking To Inject Native Shell-code Into a Standard Win32 Application

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

NSA Hacking Tool Recreation UnitedRake

A curated list of awesome social engineering resources.

Go-deliver is a payload delivery tool coded in Go.

Searches the directory of choice for interesting files. Such as database files and files with passwords stored on them

RedSnarf is a pen-testing / red-teaming tool for Windows environments