996 Open source projects that are alternatives of or similar to Grecon

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

A Tool for Domain Flyovers

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Web Application recon automation

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

Tool to generate smart and powerful wordlists

This repository created for personal use and added tools from my latest blog post.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

OneForAll是一款功能强大的子域收集工具

A Python Tool For google Hacking

OSINT

Chromepass - Hacking Chrome Saved Passwords

Log any method call of object in Objective-C

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

hacker, ready for more of our story ! 🚀

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

hack tools

记录自己编写、修改的部分工具

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Powerfull XSS Scanning and Parameter analysis tool&gem

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Automated Red Team Infrastructure deployement using Docker

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

WebShell Backdoor Framework

🎯 SQL Injection Payload List

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Email recon made fast and easy, with a framework to build on

a recon tool that allows searching on URLs that are exposed via shortener services

💣 Impulse Denial-of-service ToolKit

Fast Modular Web Interfaces Bruteforcer

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

Get All Registered Wifi Passwords from Target Computer.

Keylogger for mac written in Swift using HID

Discover hidden deepweb pages

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Providing aid in converting video games.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

Automatically brute force all services running on a target.

websocket-connection-smuggler

Asynchronous Python implementation of SlowLoris DoS attack

A Router WiFi key recovery/cracking tool with a twist.