1422 Open source projects that are alternatives of or similar to Flask Unsign

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Command line tool that allows you to explore IoT devices by using Shodan API.

mXtract - Memory Extractor & Analyzer

DEFCON CTF 2017 Stuff of Shit by HITCON

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

A tool to automate penetration tests

Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

List of every possible vulnerabilities in computer security.

A curated list of awesome privilege escalation

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Venom - A Multi-hop Proxy for Penetration Testers

Sifter aims to be a fully loaded Op Centre for Pentesters

Penetration Testing notes, resources and scripts

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

OSINT Tool: Generate username lists for companies on LinkedIn

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

Infection Monkey - An automated pentest tool

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🔨 A modern multiple reverse shell sessions manager wrote in go

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Build a database of libc offsets to simplify exploitation

Ruby on Rails Phishing Framework

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具

A cross-platform note-taking & target-tracking app for penetration testers.

Detect hidden files and text in images

China's first CTFTools framework.中国国内首个CTF工具框架,旨在帮助CTFer快速攻克难关

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

Forward shell generation framework

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

The Collective. A repo for a collection of red-team projects found mostly on Github.

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

Learning Penetration Testing of Android Applications

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A Discord bot that provides ctf tools for collaboration in Discord servers!

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Gorsair hacks its way into remote docker containers that expose their APIs

Exploit Pack -The next generation exploit framework

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A curated list of awesome OSCP resources

🆕 The Multi-Tool Web Vulnerability Scanner.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient