600 Open source projects that are alternatives of or similar to Dns Persist

The cheat sheet about Java Deserialization vulnerabilities

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Encoder to bypass WAF filters using XOR operations

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Intelligence and Reconnaissance Package/Bundle installer.

A simple tool for interacting with OWASP ZAP from the commandline.

A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

A list of payload and bypass lists for penetration testing and red team infrastructure build.

Network protocol auditing framework

Burp Suite extension to discover assets from HTTP response.

Know the dangers of credential reuse attacks.

A wrapper for Nmap to quickly run network scans

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Monitor linux processes without root permissions

Centralize Vulnerability Assessment and Management for DevSecOps Team

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

[unmaintained] Post-exploitation tool

[POC] Asynchronous reverse shell using the HTTP protocol.

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

Study Notes For Web Hacking / Web安全学习笔记

A script written lazily for generating cross-platform backdoors on the go :)

The ultimate WinRM shell for hacking/pentesting

A tool to test security of json web token

fully automated pentesting tool

🔺 Red Team Hardware Toolkit 🔺

Disposable and resilient red team infrastructure with Terraform

A Cloudflare resolver that works

Python network tool, similar to Netcat with custom features.

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

My collection of metasploit auxiliary post-modules

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

A simple dns resolver of dns-record and web-record log server for pentesting

Linux C2 框架demo，为期2周的”黑客编程马拉松“，从学习编程语言开始到实现一个demo的产物

A collection of useful scripts for Cobalt Strike

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

Monitoring your Slack workspaces for sensitive information

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

Monitoring GitLab for sensitive data shared publicly

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

⚡️ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡️

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Evaluate the security of S3 buckets

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

🔥 Firecrack pentest tools: Facebook hacking random attack, deface, admin finder, bing dorking:

A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

A tool to hunt for publicly accessible DigitalOcean Spaces

SSRF (Server Side Request Forgery) testing resources

A unified console to perform the "kill chain" stages of attacks.

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Web hacking framework with tools, exploits by python

A tool to abuse Exchange services

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️