600 Open source projects that are alternatives of or similar to Dns Persist

备考 OSCP 的各种干货资料/渗透测试干货资料

mXtract - Memory Extractor & Analyzer

Passwords Recovery Tool

metasploit-framework 图形界面 / 图形化内网渗透工具

Search for Unix binaries that can be exploited to bypass system security restrictions.

OSINT

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

fireELF - Fileless Linux Malware Framework

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Automation for internal Windows Penetrationtest / AD-Security

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Assist reverse tcp shells in post-exploration tasks

This repository contains full code examples from the book Gray Hat C#

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Sifter aims to be a fully loaded Op Centre for Pentesters

linux post-exploitation framework made by linux user

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Tactics, Techniques, and Procedures

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

A list to discover work of red team tooling and methodology for penetration testing and security assessment

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Venom - A Multi-hop Proxy for Penetration Testers

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

Relational database brute force and post exploitation tool for MySQL and MSSQL

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Awesome cloud enumerator

An evil RAT (Remote Administration Tool) for macOS / OS X.

Network Pivoting Toolkit

DeepSea Phishing Gear

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

👻Impost3r -- A linux password thief

A framework for Backdoor development!

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

Load shellcode into a new process

Open source pre-operation C2 server based on python and powershell

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Red Teaming Tactics and Techniques

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

The Collective. A repo for a collection of red-team projects found mostly on Github.

A set of recipes useful in pentesting and red teaming scenarios

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

mosquito - Automating reconnaissance and brute force attacks

🚀 Fast Port Scanner 🚀

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.

Code from Blackhat Python book

The cheat sheet about Java Deserialization vulnerabilities

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻