934 Open source projects that are alternatives of or similar to Ctfr

A high performance offensive security tool for reconnaissance and vulnerability scanning

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

swiss army knife for hackers

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Fast Modular Web Interfaces Bruteforcer

my oscp prep collection

Useful tools and scripts during Penetration Testing engagements

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

OSINT Tool: Generate username lists for companies on LinkedIn

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Making Favicon.ico based Recon Great again !

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Penetration Testing notes, resources and scripts

Automatically Launch Google Hacking Queries Against A Target Domain

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

HostHunter a recon tool for discovering hostnames using OSINT techniques.

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Advanced Web Shell

DNS Rebinding Exploitation Framework

Hacking Toolkit

HOSTS file and research project to block all known NSA / GCHQ / C.I.A. / F.B.I. spying server

Ruby on Rails Phishing Framework

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Web path scanner

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Micro-framework for rapid development of reusable security tools

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Semi-automatic OSINT framework and package manager

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A simple keylogger for Windows, Linux and Mac

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

Fast browser-based network discovery module

An OSINT tool to gather information about the real owner of a phone number

🔪 Leak git repositories from misconfigured websites

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

The best Hacking and PenTesting tools installer on the world

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

BlackRAT - Java Based Remote Administrator Tool

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.