1890 Open source projects that are alternatives of or similar to Cheatsheet God

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

my oscp prep collection

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Next generation web scanner

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Cameradar hacks its way into RTSP videosurveillance cameras

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Set of tools to audit SIP based VoIP Systems

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Hacking Toolkit

Automated NoSQL database enumeration and web application exploitation tool.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Attack Surface Management Platform | Sn1perSecurity LLC

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Penetration Testing notes, resources and scripts

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Web path scanner

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

Don't let buffer overflows overflow your mind

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Opening the door, one reverse shell at a time

🔪 Leak git repositories from misconfigured websites

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Linux enumeration tool for pentesting and CTFs with verbosity levels

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Awesome hacking is an awesome collection of hacking tools.

Fast Modular Web Interfaces Bruteforcer

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Study Notes For Web Hacking / Web安全学习笔记

Captive wifi hotspot bypass tool for Linux

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Know the dangers of credential reuse attacks.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Micro-framework for rapid development of reusable security tools

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

Official Black Hat Arsenal Security Tools Repository