501 Open source projects that are alternatives of or similar to Darkside

备考 OSCP 的各种干货资料/渗透测试干货资料

A wrapper for Nmap to quickly run network scans

Yet Another PHP Shell - The most complete PHP reverse shell

Hacking Toolkit

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Automated Pentest Tools Designed For Parrot Linux

Go library for credentials recovery

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Pentesting suite for Maltego based on data in a Metasploit database

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Tool Information Gathering Write By Python.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Quick SQL Scanner, Dorker, Webshell injector PHP

Multi OTP Spam Amp/Paralell threads

🔄 A collection of mitmproxy inline scripts

unix SSH post-exploitation 1337 tool

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

hydra

A tool to test security of json web token

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Attack Surface Management Platform | Sn1perSecurity LLC

Domain name permutation engine written in Go

A tool to automate penetration tests

Web path scanner

network reconnaissance toolkit

Penetration Testing Platform

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

🔐 Docker Container for Penetration Testing & Security

The LAZY script will make your life easier, and of course faster.

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Multi source CVE/exploit parser.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Subdomain enumeration through various techniques

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

A fast web directory/file enumeration tool written in Rust

Penetration test Achieve Knowledge Unite Rapid Interface

A repository of tools for pentesting of restricted and isolated environments.

一个用于识别目标网站是否采用Struts2框架开发的工具demo

GUI based offensive penetration testing tool (Open Source)

A penetration testing tool for finding file upload bugs (NDSS 2020)

Docker images for infosec tools

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

SSRF (Server Side Request Forgery) testing resources

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

A place where I can create, collect and share tooling, resources and knowledge about information security.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Set of tools to audit SIP based VoIP Systems

Automated NoSQL database enumeration and web application exploitation tool.