1112 Open source projects that are alternatives of or similar to Ehtools

A tool for integrating the Metasploit payload with Android's healthy programs and bypassing antivirus

swiss army knife for hackers

A simple dns resolver of dns-record and web-record log server for pentesting

Know the dangers of credential reuse attacks.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

An automated e-mail OSINT tool

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A curated list of awesome privilege escalation

Open Redirect Payloads

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Vagrant VirtualBox environment for conducting an internal network penetration test

Idiomatic nmap library for go developers

Rockyou for web fuzzing

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

OSINT

retrieve information via O365 with a valid cred

Automate Pentest Tool

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

💣 Impulse Denial-of-service ToolKit

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

🔖 Modern Javascript keylogger with web panel

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Linset is a WPA/WPA2 phishing tool (evil twin)

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.

Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

🎯 XML External Entity (XXE) Injection Payload List

This repository contains full code examples from the book Gray Hat C#

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

All in One Termux Os..!! (New)

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Advanced and easy to use penetration testing framework 💣🔎

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

TechNowLogger is Windows/Linux Keylogger Generator which sends key-logs via email with other juicy target info

My own OSCP guide

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

A fully automatic wifi deauther coded in Python

locate and attack Lync/Skype for Business

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Yet Another PHP Shell - The most complete PHP reverse shell

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

👻Impost3r -- A linux password thief

Top 100 Hacking & Security E-Books (Free Download)

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Just Simple Code To Play With Android Payloads (;

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Free Security and Hacking eBooks

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

Complete Listing and Usage of Tools used for Ethical Hacking

Fully automated offensive security framework for reconnaissance and vulnerability scanning