2054 Open source projects that are alternatives of or similar to H4cker

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Rubyfu, where Ruby goes evil!

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Decrypted content of eqgrp-auction-file.tar.xz

Attack Surface Management Platform | Sn1perSecurity LLC

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

The New Hacking Framework

OSINT Tool: Generate username lists for companies on LinkedIn

GUI based offensive penetration testing tool (Open Source)

Scripts I use during pentest engagements.

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

OPCDE Cybersecurity Conference Materials

A laboratory for learning secure web and mobile development in a practical manner.

DoS PoC's for SAP products

A tool for generating reverse shell payloads on the fly.

Scout - a Contactless Active Reconnaissance Tool

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Unsigned code loader for Exynos BootROM

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Hack the World using Termux

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

JSON RSA to HMAC and None Algorithm Vulnerability POC

《白帽子讲Web扫描》书籍参考代码

Guest to host VM escape exploit for Parallels Desktop

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Damn Vulnerable Web Application (DVWA)

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

Collection of different exploits

Auto Scanning to SSL Vulnerability

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Hacking Toolkit

Exploits developed by me.

Reverse Shell as a Service

Pentest: Subdomains enumeration tool for penetration testers.

A Ruby micro-framework for writing and running exploits

Ruby on Rails Phishing Framework

OWASP Joomla Vulnerability Scanner Project

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Powerful dork searcher and vulnerability scanner for windows platform

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

An advanced command-line search engine for Exploit-DB

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Web path scanner

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

python3批量poc检测工具

Penetration tests guide based on OWASP including test cases, resources and examples.

🔐 Vulnerability remediation scoring system

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

Self contained htaccess shells and attacks