1009 Open source projects that are alternatives of or similar to CEH

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Passively scan for Bluetooth Low Energy devices and attempt to fingerprint them

Powerful framework for rogue access point attack.

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

Learning Process Injection and Hollowing techniques

OSINT Framework

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

An HTTP and HTTPS sniffing tool created using a Raspberry Pi

Perform automated network reconnaissance scans

Enumerate information from NTLM authentication enabled web endpoints 🔎

Task Hijacking in Android (somebody call it also StrandHogg vulnerability)

Anteater - CI/CD Gate Check Framework

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Modular file scanning/analysis framework

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

This is a multi-use bash script for Linux systems to audit wireless networks.

Nuclei templates for K8S security scanning

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

The Offensive Manual Web Application Penetration Testing Framework.

Intelligence and Reconnaissance Package/Bundle installer.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Python-based spyware for Windows that logs the foreground window activites, keyboard inputs. Furthermore it is able to take screenshots and and run shell commands in the background.

Framework for building Windows malware, written in C++

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Simple obfuscation tool

A high performance offensive security tool for reconnaissance and vulnerability scanning

Python AV Evasion Tools

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

Batch Antivirus, a powerful antivirus suite written in batch with real-time protection and heuristical scanning.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Fully automated offensive security framework for reconnaissance and vulnerability scanning

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Android Apps, Roms and Platforms for Pentesting

DEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3

A Suite of Tools written in Python for wireless auditing and security testing.

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

🆕 The Multi-Tool Web Vulnerability Scanner.

Automated script to run all modules for a specified list of domains, netblocks or company name

Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

Kernel-Mode Driver that loads a dll into every new created process that loads kernel32.dll module

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

The PHP enumeration type library

Learn the fundamentals of Binary Auditing. Know how HLL mapping works, get more inner file understanding than ever.

findCDN is a tool created to help accurately identify what CDN a domain is using.

Python package to compute economic complexity and associated variables

This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell.

Unprotect is a python tool for parsing PE malware and extract evasion techniques.

Code Injection, Inject malicious payload via pagetables pml4.

Rogue Access Point Detector

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Related subdomains finder

Universal Radio Hacker: Investigate Wireless Protocols Like A Boss

Easy to use OpenID Connect client and server library written for Go and certified by the OpenID Foundation