100 Open source projects that are alternatives of or similar to Cti

A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.

Hacking Tools Z0172CK

dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software

STIX data representing MITRE ATT&CK

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

RPL attacks framework for simulating WSN with a malicious mote based on Contiki

SHIELD: Fast, Practical Defense and Vaccination for Deep Learning using JPEG Compression

hacker, ready for more of our story ! 🚀

This cheat sheet contains common enumeration and attack methods for Windows Active Directory with the use of powershell.

Graphical Web interface developed to facilitate the use of security information tools.

A collection of useful links for Pentesters

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

SIP-Based Audit and Attack Tool

Tutorial: Uncovering and mitigating side-channel leakage in Intel SGX enclaves

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

WordPress pentest tool

🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)

Bypass UAC by abusing the Security Center CPL and hijacking a shell protocol handler

A DNS rebinding attack framework.

An interactive command-line deauther for macOS.

This is a simple DDoS python botnet script with remote monitoring & management for education purposes.

Reproducing malicious memory reading on Intel i5 and Intel Xeon using a Spectre attack

🎯 Prevent RubberDucky (or other keystroke injection) attacks

MD5长度扩展攻击

RayS: A Ray Searching Method for Hard-label Adversarial Attack (KDD2020)

rc4md5cry: denial of service for rc4-md5 shadowsocks nodes (shadowboom paper is pending)

安全、可靠、简单、免费的企业级蜜罐

Fluxion is a remake of linset by vk496 with enhanced functionality.

Bypass UAC at any level by abusing the Task Scheduler and environment variables

电话攻击(电话轰炸、可代替短信轰炸)、留言攻击工具 | 已删库

FPGA-based LPC bus sniffing tool for Lattice iCEstick Evaluation Kit

[EMNLP 2020] "T3: Tree-Autoencoder Constrained Adversarial Text Generation for Targeted Attack" by Boxin Wang, Hengzhi Pei, Boyuan Pan, Qian Chen, Shuohang Wang, Bo Li

Python toolbox to evaluate graph vulnerability and robustness (CIKM 2021)

All your IPs are belong to us.

Refluxion -- MITM WPA attacks tool

Web proxy for http(s) for developers to analyze data between client and servers based on workerman, especailly for app developers.

Collection of several DDos tools.

BitCracker is the first open source password cracking tool for memory units encrypted with BitLocker

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

The program uses a simple type of DDoS attack "HTTP flood" using multithreading and a proxies. The program was created for informational purposes.

The Shadow Attack Framework

Bypass UAC by abusing the Internet Explorer Add-on installer

Hack instagram bruteforce new

ThePhish: an automated phishing email analysis tool

Detect deauthentication frames using an ESP8266

高度自动化CC脚本

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Anti Shoulder Surfing Attack Platform (ASSAP)

Creates up to a thousand WiFi access points with custom SSIDs.

Man in the middle tool

Python - Human Interface Device Android Attack Framework

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

A curated list of amazingly awesome Cybersecurity datasets

DDoS Attack & Protection Tools for Windows, Linux & Android

Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, instagram accounts, ssh servers, microsoft rdp clients and gmail accounts

Generate unicode evil domains for IDN Homograph Attack and detect them.

💣 Impulse Denial-of-service ToolKit

This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack

Socks5 Proxy HTTP/HTTPS-Flooding (cc) attack