505 Open source projects that are alternatives of or similar to East

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

network reconnaissance toolkit

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

An advanced graphical search engine for Exploit-DB

Don't let buffer overflows overflow your mind

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

GUI based offensive penetration testing tool (Open Source)

Collection of resources for my preparation to take the OSEE certification.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

unix SSH post-exploitation 1337 tool

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

🆕 The Multi-Tool Web Vulnerability Scanner.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

pentest toolbox

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

A curated list of awesome OSCP resources

Work in progress...

An advanced command-line search engine for Exploit-DB

The Collective. A repo for a collection of red-team projects found mostly on Github.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Work in progress...

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Automated NoSQL database enumeration and web application exploitation tool.

Opening the door, one reverse shell at a time

A collection of resources I'm using while working toward the OSCP

This Script will help you to gather information about your victim or friend.

Infosec resource center for offensive and defensive security operations.

This script will you help to find the information about the website and to help in penetrating testing

link is a command and control framework written in rust

Subdomain enumeration through various techniques

Security tool to quickly audit Public Box files and folders.

A Tool for Domain Flyovers

Multi OTP Spam Amp/Paralell threads

A pentesting tool inspired by mr robot and derived by zphisher

cms识别

Cybersecurity stuff for both the blue team and the red team, mostly red though.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

A Modular Penetration Testing Framework

A Docker container for remote penetration testing.

HatVenom is a HatSploit native powerful payload generation tool that provides support for all common platforms and architectures.

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

Windows OS keylogger with a hook mechanism (i.e. with a keyboard hook procedure).

异步漏洞利用框架

Offensive Reverse Shell (Cheat Sheet)

🍪 Flask Session Cookie Decoder/Encoder

EmpireCTF – write-ups, capture the flag, cybersecurity

automation framework for kenzerdb

Experiments on C/C++ Exploits

A web application for generating custom XSS payloads

A Collection of articles, videos, blogs, talks and other materials on Node.js Security

Modular personalized dictionary generator.

A cross-platform python based utility for information gathering and penetration testing automation!

Free Security and Hacking eBooks

Master list of all my vulnerability discoveries. Mostly 3rd party kernel drivers.

Command line tool that allows you to explore IoT devices by using Shodan API.

Common Web Managers Fuzz Wordlists