753 Open source projects that are alternatives of or similar to Dsinternals

Useful tools and scripts during Penetration Testing engagements

Terraform script to deploy AD-based environment on Azure

Exploits and Security Tools Framework 2.0.1

Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.

A collection of wordlists dictionaries for password cracking

My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.

A cross-platform python based utility for information gathering and penetration testing automation!

A collection of scripts I've created over the years to administer things.

Penetration Testing notes, resources and scripts

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Search Google and download specific file types

A PowerShell module for managing users and computers and gathering information in a Windows Active Directory environment.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

PoC script showing that MacOS leaves the wireless key in NVRAM, in plaintext and accessible to anyone.

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Modular personalized dictionary generator.

Top 100 Hacking & Security E-Books (Free Download)

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Common Web Managers Fuzz Wordlists

Simple CLI script to check if you have a password that has been compromised in a data breach.

Easily export your passwords from Firefox.

👤 This Active Directory Search tool was written in C# and VB.NET Windows Forms and exports the results from LDAP to csv format.

ATT&CK实操

Web path scanner

Totally Insecure Web Application Project (TIWAP)

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

Dark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

蓝鲸用户管理是蓝鲸智云提供的企业组织架构和用户管理解决方案，为企业统一登录提供认证源服务。

A Modular Penetration Testing Framework

Hands-On Serverless Applications with Go, published by Packt.

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Penetration Test Framwork

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

WordPress pentest tool

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

An Alfred 4 workflow that allows you to quickly generate strong passwords.

Certified Smart Contract Audits (Ethereum, Hyperledger, xDAI, Huobi ECO Chain, Binance Smart Chain, Fantom, EOS, Tezos) by Chainsulting

Collection of several DDos tools.

A boilerplate Go and AWS Lambda app. Demonstrates an expert configuration of 10+ AWS services to support running Go functions-as-a-service (FaaS).

RFMap - Radio Frequency Mapper

A D library for computational biology and bioinformatics

A simple, extensible C&C beaconing system.

OSINT Tool: Generate username lists for companies on LinkedIn

Secure, Unified, Powerful and Extensible Rust Android Analyzer

A way to manage Group Policy Preferences through PowerShell

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

CodeCat is an open-source tool to help you find/track user input sinks and security bugs using static code analysis. These points follow regex rules. Beta version.

kube-scan: Octarine k8s cluster risk assessment tool

RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

The standard Active Directory object picker dialog for .NET

Find and notify users in your Active Directory with weak passwords

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

The New Hacking Framework

🎩 The mighty NodeJS password vault