804 Open source projects that are alternatives of or similar to Elliot

Ruby on Rails Phishing Framework

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Command line tool that allows you to explore IoT devices by using Shodan API.

The most complete phishing tool

my oscp prep collection

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

备考 OSCP 的各种干货资料/渗透测试干货资料

DeepSea Phishing Gear

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Yet Another PHP Shell - The most complete PHP reverse shell

This script will you help to find the information about the website and to help in penetrating testing

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

List of every possible vulnerabilities in computer security.

A collection of public offensive and defensive security related scripts for InfoSec students.

A wrapper for Nmap to quickly run network scans

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Code from Blackhat Python book

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

Generates malicious LNK file payloads for data exfiltration

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Cameradar hacks its way into RTSP videosurveillance cameras

GoPhish Templates that I have retired and/or templates I've recreated.

Bash script which installs and runs the Fluxion tool inside Termux, a wireless security auditing tool used to perform attacks such as WPA/WPA2 cracking and MITM attacks.

Best Tool For Phishing, Future Of Phishing

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

The Collective. A repo for a collection of red-team projects found mostly on Github.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

🔪 Leak git repositories from misconfigured websites

Collecting IOCs posted on Twitter

Study Notes For Web Hacking / Web安全学习笔记

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

A tool to test security of json web token

🔐 Docker Container for Penetration Testing & Security

A simple tool for interacting with OWASP ZAP from the commandline.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Vagrant VirtualBox environment for conducting an internal network penetration test

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Free Fire Phishing Tool ID Hack Tool For Online Hacking

The LAZY script will make your life easier, and of course faster.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Skeleton is a Social Engineering tool attack switcher

phishEye is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, LinkedIn, GitHub, Dropbox, and many others. Created with Flask, custom templates, and tunneled with ngrok and localhost.run.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

Dark-Phish is a complete phishing tool. For more about Dark-Phish tool please visit the website.

Phishing Tool & Information Collector

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Domain name permutation engine written in Go

A multi-layered and multi-tiered Machine Learning security solution, it supports always on detection system, Django REST framework used, equipped with a web-browser extension that uses a REST API call.

Argus Advanced Remote & Local Keylogger For macOS and Windows