382 Open source projects that are alternatives of or similar to Enigma

Pentest/BugBounty progress control with scanning modules

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Hooks in to interesting functions and helps reverse the web app faster.

A javascript single page application (SPA) driver for REST API payload management.

HERCULES is a special payload generator that can bypass antivirus softwares.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Burp Bounty profiles compilation, feel free to contribute!

Gets in the way of your victim's traffic and out of yours

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

🔐 Docker Container for Penetration Testing & Security

Offensive Reverse Shell (Cheat Sheet)

Fast website scraper and wordlist generator

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

BloodHound Docker Ready to Use

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

A tool for generating reverse shell payloads on the fly.

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

VNC pentest tool with bruteforce and ducky script execution features

Penetration Testing notes, resources and scripts

Related subdomains finder

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

Multi source CVE/exploit parser.

Hershell is a simple TCP reverse shell written in Go.

This is the ToRat client, a part of the ToRat Project.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Pentest: Subdomains enumeration tool for penetration testers.

Automatically Launch Google Hacking Queries Against A Target Domain

Quick SQL Scanner, Dorker, Webshell injector PHP

Find exploits in local and online databases instantly

🖖 Fast, modern, easy-to-use network scanner

The Web Application Hacker's Handbook - Extra Content

Generate MS Word template-based reports with HP WebInspect / Burp Suite Pro input, own custom data and knowledge base.

nray distributed port scanner

A repository for scripting a mobile attack toolchain

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Pentest Report Generator

Passwords Recovery Tool

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)

Data leak checker & OSINT Tool

A curated list of awesome privilege escalation

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

RFD Checker - security CLI tool to test Reflected File Download issues

RunasCs - Csharp and open version of windows builtin runas.exe

Tool for port forwarding & intranet proxy

All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭

OSINT Swiss Army Knife

An Advanced Tool For Complete Apk-Modding In Termux ...

Tool for catching and logging different types of requests.

RubberDucky like payloads for DigiSpark Attiny85

🎯 Server Side Template Injection Payloads

A wrapper for Nmap to quickly run network scans

Fast Modular Web Interfaces Bruteforcer

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

This powershell script has got to run in remote hacked windows host, even for pivoting