1905 Open source projects that are alternatives of or similar to Capsulecorp Pentest

🔐 Docker Container for Penetration Testing & Security

BlackRAT - Java Based Remote Administrator Tool

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

A collection of tools and files for learning new technologies

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Pop shells like a master.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

cve-2019-0604 SharePoint RCE exploit

Ansible role to apply a security baseline. Systemd edition.

Bloomberg Clustered Private Cloud distribution

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Hawkeye filesystem analysis tool

Pre-provisioned L*MP stack

A tool to fastly get all javascript sources/files

A collection of Ansible roles for automating infosec builds.

SSH man-in-the-middle tool

A VM for Drupal development

A collection of public offensive and defensive security related scripts for InfoSec students.

This build has been moved - see README.md

Collection of quality safety articles. Awesome articles.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Penetration tests guide based on OWASP including test cases, resources and examples.

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Generates malicious LNK file payloads for data exfiltration

This is a RHCSA8 study environment built with Vagrant/Ansible

A collection of various awesome lists for hackers, pentesters and security researchers

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Content for hackingthe.cloud

Linux enumeration tool for pentesting and CTFs with verbosity levels

Adds a customizable "Send to..."-context-menu to your BurpSuite.

📡 A python program to create a fake AP and sniff data.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Awesome hacking is an awesome collection of hacking tools.

A collection of personal scripts used in hacking excercises.

Packer templates to create Windows vagrant box images

ANDRAX The first and unique Penetration Testing platform for Android smartphones

Phishing Tool & Information Collector

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Powerful Visual Subdomain Enumeration at the Click of a Mouse

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

A collection of hacking / penetration testing resources to make you better!

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

SSRF (Server Side Request Forgery) testing resources

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Rockyou for web fuzzing

Don't let buffer overflows overflow your mind

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Giving the Elastic Stack a try in Vagrant

retrieve information via O365 with a valid cred

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Automated NoSQL database enumeration and web application exploitation tool.

Know the dangers of credential reuse attacks.