2054 Open source projects that are alternatives of or similar to H4cker

Argus Advanced Remote & Local Keylogger For macOS and Windows

Black Worm Offical Repo

Vulnerability assessment and penetration testing automation and reporting platform for teams.

This script will you help to find the information about the website and to help in penetrating testing

Apache Shiro 反序列化漏洞检测与利用工具

Enine boyuna siber güvenlik

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

All-in-one tool for managing vulnerability reports from AppSec pipelines

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

A collection of hacking / penetration testing resources to make you better!

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

A collection of android Exploits and Hacks

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Penetration Testing notes, resources and scripts

The Web Application Hacker's Handbook - Extra Content

Apache Solr Injection Research

Useful tools and scripts during Penetration Testing engagements

Proofs-of-concept

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

Attack Surface Management Platform | Sn1perSecurity LLC

Multi-threaded Instagram Brute Forcer (100 attemps at once)

The Collective. A repo for a collection of red-team projects found mostly on Github.

The New Hacking Framework

OSINT Tool: Generate username lists for companies on LinkedIn

Auto Scanning to SSL Vulnerability

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

📝 ⌨️ A GNU/Linux keylogger that works!

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

A laboratory for learning secure web and mobile development in a practical manner.

OPCDE Cybersecurity Conference Materials

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Hack the World using Termux

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Damn Vulnerable Web Application (DVWA)

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

OWASP Joomla Vulnerability Scanner Project

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Hacking Toolkit

Ruby on Rails Phishing Framework

Reverse Shell as a Service

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

🔪 Leak git repositories from misconfigured websites

Self contained htaccess shells and attacks

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.