871 Open source projects that are alternatives of or similar to Eyes.sh

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

A swiss army knife for pentesting networks

cms识别

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

CLI program that collects information from facebook user profiles via Selenium.

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

Querytool is an OSINT framework based on Google Spreadsheets. With this tool you can perform complex search of terms, people, email addresses, files and many more.

WeirdAAL (AWS Attack Library)

Offensive Reverse Shell (Cheat Sheet)

👻Behold3r -- 收集指定网站的子域名，并可监控指定网站的子域名更新情况，发送变更报告至指定邮箱

SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

mXtract - Memory Extractor & Analyzer

Website for arguments against systemd and further resources

This powershell script has got to run in remote hacked windows host, even for pivoting

Notes for taking the OSCP in 2097. Read in book form on GitBook

Pentesting/Bugbounty Dockerfiles.

./kumasia php simple backdoor

Tools for Hacking

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

A Collection of articles, videos, blogs, talks and other materials on Node.js Security

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Modular personalized dictionary generator.

Common Web Managers Fuzz Wordlists

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

红队综合渗透框架

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Host Header Injection Checker

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

Hacking, pen-testing, and cyber-security related tools built with Python.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

Evildork targeting your fiancee👁️

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

An advanced command-line search engine for Exploit-DB

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Subdomain Takeover tool written in Go

Python Books for Security

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Automated tool for WiFi hacking.

This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

All MITM attacks in one place.

Top 20 Kali Linux Related E-books (Free Download)

Reverse shell manager using tmux and ncat

Fast directory scanning and scraping tool

The Most Powerful Fake Page Redirecting tool...

🔎 Find usernames across social networks

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Collection of tips, tools and tutorials around infosec

Directory/File, DNS and VHost busting tool written in Go

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Domain availbility checker

Simple multi threaded tool to extract domain related data from commoncrawl.org