2270 Open source projects that are alternatives of or similar to Habu

A collection of personal scripts used in hacking excercises.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

This powershell script has got to run in remote hacked windows host, even for pivoting

A Tool for Domain Flyovers

Most usable tools for iOS penetration testing

A collection of hacking / penetration testing resources to make you better!

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Different utility scripts for pentesting and hacking.

List of every possible vulnerabilities in computer security.

Web Recon & Exploitation Tool.

A pentesting tool inspired by mr robot and derived by zphisher

scan for NTLM directories

Command line tool that allows you to explore IoT devices by using Shodan API.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

A list of payload and bypass lists for penetration testing and red team infrastructure build.

Selenium powered Python script to automate searching for vulnerable web apps.

Continuously monitor your AWS services for configurations that can lead to degradation of confidentiality, integrity or availability. All results will be sent to Security Hub for further aggregation and analysis.

mXtract - Memory Extractor & Analyzer

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

TechNowLogger is Windows/Linux Keylogger Generator which sends key-logs via email with other juicy target info

Overlord - Red Teaming Infrastructure Automation

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

locate and attack Lync/Skype for Business

Extract endpoints from APK files

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

WireBug is a toolset for Voice-over-IP penetration testing

😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Linux vulnerability scanner based on Salt Open and Vulners audit API, with Slack notifications and JIRA integration

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Secure, Unified, Powerful and Extensible Rust Android Analyzer

ANDRAX The first and unique Penetration Testing platform for Android smartphones

🔎 shodansploit > v1.3.0

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

Rockyou for web fuzzing

Git All the Payloads! A collection of web attack payloads.

Rubyfu, where Ruby goes evil!

ATT&CK实操

Automated Penetration Testing Framework

A framework and application for network observability

Top 100 Hacking & Security E-Books (Free Download)

Wireshark Cheat Sheet

Like nmap for mapping wifi networks you're not connected to, plus device tracking

Simple scapy-based tool to hijack and reset existing TCP connections

bandwidth monitor and rate estimator

Free advanced and modern Windows botnet with a nice and secure PHP panel.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Free Security and Hacking eBooks

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

secureCodeBox (SCB) - continuous secure delivery out of the box

Automate Pentest Tool

红队综合渗透框架

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。