521 Open source projects that are alternatives of or similar to Cloak

A collection of reverse engineered Apple things, as well as a machine-readable database of Apple hardware

200 TOOLS BY 0XID4FF0X FOR TERMUX

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Extensible framework for analyzing publicly available information about vulnerabilities

Check if your VPN leaks your IP address via the WebRTC technology

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

pwninit - automate starting binary exploit challenges

CamOver is a camera exploitation tool that allows to disclosure network camera admin password.

A fully featured Windows backdoor that uses Gmail as a C&C server

Exploits pack for the Windows Kernel mode driver HackSysExtremeVulnerableDriver written for educational purposes.

Final project for the M.Sc. in Engineering in Computer Science at Università degli Studi di Roma "La Sapienza" (A.Y. 2016/2017).

A collection of hacking / penetration testing resources to make you better!

Simple DLL that add a user to the local Administrators group

Web wrapper of niklasb/libc-database

My personal unique wiki for hacking the router firmware used by (Telia)TG799vac Xtream v17.2-MINT delivered from Technicolor

📢 🔒 Exploit farm for attack-defense CTF competitions

Guest to host VM escape exploit for Parallels Desktop

Working Python test and PoC for CVE-2018-11776, includes Docker lab

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

Reference: http://www.secgeek.net/bookfresh-vulnerability/

Small backdoor using cookie.

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

PoC materials for article https://habr.com/en/post/486856/

Amazon SNS/SQS client library that enables sending and receiving messages with payload larger than 256KiB via Amazon S3.

A container repository for my public web hacks!

This is a list of Discord console scripts, bugs and exploits.

The best tool for finding one gadget RCE in libc.so.6

Unrestricted Lua Execution

🎯 XML External Entity (XXE) Injection Payload List

BrowserBackdoor is an Electron Application with a JavaScript WebSocket Backdoor and a Ruby Command-Line Listener

A tool which utilizes Shodan to detect vulnerable IoT devices.

ParadoxiaRat : Native Windows Remote access Tool.

A PHP Based Tool That Helps You To Manage All Your Backdoored Websites Efficiently.

Samsung Galaxy S3 GT-I9300 eMMC toolbox

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

A collection of Destiny 2 macros built with AutoHotKey

Exploiting challenges in Linux and Windows

Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.

Kindle 5.6.5 exploitation tools.

📖 [译] SploitFun Linux x86 Exploit 开发系列教程

[Discontinued] Transform your payload into fake powerpoint (.ppt)

Scan and Export RouterOS Password

Exploitation and Mitigation Slides

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

PCI Express DIY hacking toolkit for Xilinx SP605

Drupal < 7.58 - Drupalgeddon 3 Authenticated Remote Code Execution (Metasploit)

A Ruby micro-framework for writing and running exploits

Bad char generator to instruct encoders such as shikata-ga-nai to transform those to other chars.

ARM rop chain gadget searcher

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

An overlay attack example

Hourly updated database of exploit and exploitation reports

PowerShell payload generator

Rage allows you to execute any file in a Microsoft Office document.