787 Open source projects that are alternatives of or similar to Darkspiritz

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

RubberDucky like payloads for DigiSpark Attiny85

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Useful tools and scripts during Penetration Testing engagements

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Automation for internal Windows Penetrationtest / AD-Security

Framework RapidPayload - Metasploit Payload Generator | Crypter FUD AntiVirus Evasion

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

A fast web directory/file enumeration tool written in Rust

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

A collection of public offensive and defensive security related scripts for InfoSec students.

Multi source CVE/exploit parser.

Quick SQL Scanner, Dorker, Webshell injector PHP

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Go library for credentials recovery

Penetration test Achieve Knowledge Unite Rapid Interface

PENIOT: Penetration Testing Tool for IoT

Pentesting suite for Maltego based on data in a Metasploit database

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

my oscp prep collection

Command line tool that allows you to explore IoT devices by using Shodan API.

Automated Pentest Tools Designed For Parrot Linux

Subdomain enumeration through various techniques

Overlord - Red Teaming Infrastructure Automation

SSRF (Server Side Request Forgery) testing resources

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Next generation web scanner

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

Open Redirect Payloads

Set of tools to audit SIP based VoIP Systems

The all-in-one Red Team extension for Web Pentester 🛠

Extract subdomains from SSL certificates in HTTPS sites.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

unix SSH post-exploitation 1337 tool

Automation Recon tool which works with Large & Medium scopes. It performs more than 20 tasks and gets back all the results in separated files.

Wireshark Cheat Sheet

A ZigBee hacking toolkit by Bishop Fox

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

The ultimate WinRM shell for hacking/pentesting

The cheat sheet about Java Deserialization vulnerabilities

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Collection of the cheat sheets useful for pentesting

Linux Privilege Escalation Tool By WazeHell

A Cloudflare resolver that works

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

💫 An asynchronous Low & Slow traffic generator, written in Rust

Red Teaming Tactics and Techniques

ANDRAX The first and unique Penetration Testing platform for Android smartphones

A simple dns resolver of dns-record and web-record log server for pentesting

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A collection of useful scripts for Cobalt Strike