820 Open source projects that are alternatives of or similar to Dnstricker

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Let's find someone's account

A collection of various awesome lists for hackers, pentesters and security researchers

hacking-tool termux-tools termux noob-friendly instagram-bot bruteforce-password-cracker wordlist-technique

DNS Sub-domain brute forcer, in Python + gevent

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

Knowledge Base 慢雾安全团队知识库

websocket-connection-smuggler

红队作战中比较常遇到的一些重点系统漏洞整理。

arpspoof for macOS - intercept packets on a switched LAN

HOSTS file and research project to block all known NSA / GCHQ / C.I.A. / F.B.I. spying server

A list to discover work of red team tooling and methodology for penetration testing and security assessment

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Hack Facebook

A Powerful Subdomain Takeover Tool

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

An ongoing list of virtual cybersecurity conferences.

Proves JVM cheats are viable on native games, and demonstrates the longevity against anti-cheat signature detection systems

This custom Fail2Ban filter and jail will deal with all scans for common Wordpress, Joomla and other Web Exploits being scanned for by automated bots and those seeking to find exploitable web sites.

🎯 Advanced debugging skills used in the iOS project development process, involves the dynamic debugging, static analysis and decompile of third-party libraries. iOS 项目开发过程中用到的高级调试技巧，涉及三方库动态调试、静态分析和反编译等领域

A super portable botnet framework with a Django-based C2 server. The client is written in C++, with alternate clients written in Rust, Bash, and Powershell.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

ssh management tool to provides commandline access to a remote system running SSH server

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Discover hidden deepweb pages

🔨 A modern multiple reverse shell sessions manager wrote in go

XSHOCK Shellshock Exploit

A collection of personal scripts used in hacking excercises.

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

💣 Impulse Denial-of-service ToolKit

Multi-thread Twitter BruteForcer in Shell Script

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

A step-by-step walkthrough of CloudGoat 2.0 scenarios.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

The iOS Security Testing Framework

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

hydra

NSA Hacking Tool Recreation UnitedRake

👁 (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued]

DeepSea Phishing Gear

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

RedSnarf is a pen-testing / red-teaming tool for Windows environments

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A Python3 based single-file subdomain enumerator

Keylogger for mac written in Swift using HID

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Find web directories without bruteforce

Automatically brute force all services running on a target.