1929 Open source projects that are alternatives of or similar to Dumpall

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Tools, tips, tricks, and more for exploring ICS Security.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A list of resources for those interested in getting started in bug bounties

Hacking Toolkit

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

The Swiss Army knife for automated Web Application Testing

Pillage filesystems for sensitive information with Go.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

scan for NTLM directories

200 TOOLS BY 0XID4FF0X FOR TERMUX

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

It's a simple tool for test vulnerability shellshock

Collection of quality safety articles. Awesome articles.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

RubberDucky like payloads for DigiSpark Attiny85

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

The all-in-one Red Team extension for Web Pentester 🛠

Linux enumeration tool for pentesting and CTFs with verbosity levels

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

A simple dns resolver of dns-record and web-record log server for pentesting

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Know the dangers of credential reuse attacks.

Message Queue & Broker Injection tool

Python network worm that spreads on the local network and gives the attacker control of these machines.

🐱‍💻 Tiny Tiny Hacks we use in our daily life.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Repositório com conteúdo sobre web hacking em português

A tool to fastly get all javascript sources/files

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

An automated e-mail OSINT tool

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A permutation generation tool written in golang

retrieve information via O365 with a valid cred

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

CMS Detection and Exploit Kit based on Whatcms.org API

Rockyou for web fuzzing

Vagrant VirtualBox environment for conducting an internal network penetration test

Cameradar hacks its way into RTSP videosurveillance cameras

安全、可靠、简单、免费的企业级蜜罐

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

Enumerate information from NTLM authentication enabled web endpoints 🔎

安全编排与自动化响应平台

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.