715 Open source projects that are alternatives of or similar to Fuxi

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Steal Net-NTLM Hash using Bad-PDF

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Exploit Pack -The next generation exploit framework

🐶 A curated list of Web Security materials and resources.

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

Exploiting Edge's read:// urlhandler

Self contained htaccess shells and attacks

Poc Collected for study and develop

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Security Tool to Look For Interesting Files in S3 Buckets

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Gorsair hacks its way into remote docker containers that expose their APIs

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

IPv6 attack toolkit

SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique

Simple Karma Attack

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Tools for Hacking

A cross-platform note-taking & target-tracking app for penetration testers.

🎯 Command Injection Payload List

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

Ruby on Rails Phishing Framework

Wordpress Attack Suite

An MSBuildTask that checks for known vulnerabilities. Inspired by OWASP SafeNuGet.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

USB Rubber Ducky type scripts written for the DigiSpark.

Browse and search through nmap's NSE scripts.

A portable console aimed at making pentesting with PowerShell a little easier.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

MSDAT: Microsoft SQL Database Attacking Tool

A DNS rebinding attack framework.

CVE-2016-8610 (SSL Death Alert) PoC

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Discover Your Attack Surface!

Collection of tips, tools and tutorials around infosec

Abusing Impersonation Privileges on Windows 10 and Server 2019

DotDotPwn - The Directory Traversal Fuzzer

A default credential scanner.

A web front-end for password cracking and analytics

ES File Explorer Open Port Vulnerability - CVE-2019-6447

Algorithms to re-compute a private key, to fake signatures and some other funny things with Bitcoin.

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

SQL Vulnerability Scanner

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Infection Monkey - An automated pentest tool

Modern tactical exploitation toolkit.

🔪Browser logic vulnerabilities ☠️

Vulnerability Labs for security analysis

CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.