2054 Open source projects that are alternatives of or similar to H4cker

Advanced vulnerability scanning with Nmap NSE

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Backend logic implementation for Vulnerability Management System

🆕 The Multi-Tool Web Vulnerability Scanner.

hack tools

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Advanced Web Browser Fingerprinting

hacker, ready for more of our story ! 🚀

SQL Injection Payload List

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

Asynchronous Python implementation of SlowLoris DoS attack

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Collection of several DDos tools.

pentest toolbox

Exploiting challenges in Linux and Windows

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Hourly updated database of exploit and exploitation reports

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Hacking, pen-testing, and cyber-security related tools built with Python.

This script will you help to find the information about the website and to help in penetrating testing

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Some of my public exploits

Remote control your Greenbone Community Edition or Greenbone Enterprise Appliance

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

Apache Shiro 反序列化漏洞检测与利用工具

Argus Advanced Remote & Local Keylogger For macOS and Windows

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A collection of android Exploits and Hacks

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Black Worm Offical Repo

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

The Correlated CVE Vulnerability And Threat Intelligence Database API

All-in-one tool for managing vulnerability reports from AppSec pipelines

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.