1584 Open source projects that are alternatives of or similar to Commix

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Web path scanner

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Default signature for Jaeles Scanner

Hetty is an HTTP toolkit for security research.

Responsive Command and Control System

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

A high performance offensive security tool for reconnaissance and vulnerability scanning

fully automated pentesting tool

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

An OSINT tool to find contacts in order to report security vulnerabilities.

Hexrays Toolbox - Find code patterns within the Hexrays AST

💻 Nextcloud themed desktop client - Moved over to https://github.com/nextcloud/desktop

An extensible toolkit providing penetration testers an easy-to-use platform to deploy Access Points during penetration testing and red team engagements.

Repository for Open Source Mouse Firmware and Hardware

Metasploit custom modules, plugins, resource script and.. awesome metasploit collection

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

Exploit for CVE-2019-9810 Firefox on Windows 64-bit.

Deception based detection techniques mapped to the MITRE’s ATT&CK framework

CVE-2019-1652 /CVE-2019-1653 Exploits For Dumping Cisco RV320 Configurations & Debugging Data AND Remote Root Exploit!

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

A tool to automate the boring process of APK recon

Official Pytorch Implementation of: "Asymmetric Loss For Multi-Label Classification"(2020) paper

Sistema de prevenção ao suicídio

The auto-play feature detection in HTMLMediaElement (<audio> or <video>).

A WebKit exploit using CVE-2018-4441 to obtain RCE on PS4 6.20.

Automatically generate a beautiful best-practice README file based on the contents of your repository

Vagrant VirtualBox environment for conducting an internal network penetration test

A powerful open source data warehouse system

#100DaysOfCode - Learn by developing 100 unique apps to explore exciting tech stacks

Perception toolkit for sim2real training and validation

Decode All Bases - Base Scheme Decoder

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

☁️ Nextcloud server, a safe home for all your data

Official PyTorch Implementation for "Rotate to Attend: Convolutional Triplet Attention Module." [WACV 2021]

A backdoor with a multitude of features.

An automated e-mail OSINT tool

Tool to generate ROP gadgets for ARM, AARCH64, x86, MIPS, PPC, RISCV, SH4 and SPARC

Open sourece medical books in LaTeX. LaTeX写的中文开源医学书籍

Pothos SDR windows development environment

Tutorials and Things to Do while Hunting Vulnerability.

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

faster rcnn c++ version. joint train; please checkout into dev branch (git checkout dev)

A Patch for Dev-Ops community https://t.me/devOpsPatch

A simple wrapper for C# tools

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Captcha Intruder (CIntrud3r) is an automatic pentesting tool to bypass captchas.

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

A simple SSRF-testing sheriff written in Go

Open source clone of Theme Hospital

Offensive Software Exploitation Course

RPN+(Tensorflow) for people detection

Pterodactyl is an open-source game server management panel built with PHP 7, React, and Go. Designed with security in mind, Pterodactyl runs all game servers in isolated Docker containers while exposing a beautiful and intuitive UI to end users.

DNS-Persist is a post-exploitation agent which uses DNS for command and control.

Splunk Security Content

Faster-RCNN in Tensorflow

⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️