934 Open source projects that are alternatives of or similar to Ctfr

Python network worm that spreads on the local network and gives the attacker control of these machines.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Perform automated network reconnaissance scans

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

An automated e-mail OSINT tool

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Vagrant VirtualBox environment for conducting an internal network penetration test

Rockyou for web fuzzing

The linux choice collection tools

Know the dangers of credential reuse attacks.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Next generation web scanner

🔪 Leak git repositories from misconfigured websites

locate and attack Lync/Skype for Business

OSINT

This is a multi-use bash script for Linux systems to audit wireless networks.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Micro-framework for rapid development of reusable security tools

🤖 The Modern Port Scanner 🤖

My own OSCP guide

Idiomatic nmap library for go developers

Study Notes For Web Hacking / Web安全学习笔记

Quickly analyze and reverse engineer Android packages

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

A curated list of awesome privilege escalation

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Useful tools and scripts during Penetration Testing engagements

The best Hacking and PenTesting tools installer on the world

Extract endpoints from APK files

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Advanced Web Shell

HOSTS file and research project to block all known NSA / GCHQ / C.I.A. / F.B.I. spying server

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Ruby on Rails Phishing Framework

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Semi-automatic OSINT framework and package manager

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Fast browser-based network discovery module

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A simple dns resolver of dns-record and web-record log server for pentesting

The ultimate WinRM shell for hacking/pentesting

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A simple keylogger for Windows, Linux and Mac

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.