175 Open source projects that are alternatives of or similar to Foolav

Automation for internal Windows Penetrationtest / AD-Security

XSHOCK Shellshock Exploit

Penetration test Achieve Knowledge Unite Rapid Interface

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Privilege Escalation Enumeration Script for Windows

SMB Relay Attack Script

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

XSS'OR - Hack with JavaScript.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

dnsub一款好用的子域名扫描工具

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

A fast web directory/file enumeration tool written in Rust

Relational database brute force and post exploitation tool for MySQL and MSSQL

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

A wrapper for Nmap to quickly run network scans

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

Penetration Testing Platform

Pentesting suite for Maltego based on data in a Metasploit database

Browse and search through nmap's NSE scripts.

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Wiegand data logger, replay device and micro door-controller

unix SSH post-exploitation 1337 tool

ODAT: Oracle Database Attacking Tool

Domain name permutation engine written in Go

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

💫 An asynchronous Low & Slow traffic generator, written in Rust

Powershell script to setup windows port forwarding using native netsh client

An information gathering tool to collect git commit emails in version control host services

foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV

🔐 Docker Container for Penetration Testing & Security

iOS/macOS/Linux Remote Administration Tool

Docker images for infosec tools

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

备考 OSCP 的各种干货资料/渗透测试干货资料

Venom - A Multi-hop Proxy for Penetration Testers

A tool to test security of json web token

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

A unified console to perform the "kill chain" stages of attacks.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

一个用于识别目标网站是否采用Struts2框架开发的工具demo

SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique

Tool Information Gathering & social engineering Write By [Python,JS,PHP]

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

SSRF (Server Side Request Forgery) testing resources

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

A ZigBee hacking toolkit by Bishop Fox

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

Set of tools to audit SIP based VoIP Systems

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

🔄 A collection of mitmproxy inline scripts

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

A high performance offensive security tool for reconnaissance and vulnerability scanning

RubberDucky like payloads for DigiSpark Attiny85

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux