1740 Open source projects that are alternatives of or similar to Hack Tools

hacker, ready for more of our story ! 🚀

SQL Injection Payload List

200 TOOLS BY 0XID4FF0X FOR TERMUX

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

web scanner - exploitation - information gathering

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Asynchronous Python implementation of SlowLoris DoS attack

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

记录自己编写、修改的部分工具

Advanced vulnerability scanning with Nmap NSE

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Apache Shiro 反序列化漏洞检测与利用工具

Chromepass - Hacking Chrome Saved Passwords

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

Advanced Web Browser Fingerprinting

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

Web Recon & Exploitation Tool.

Real world and CTFs exploiting web/binary POCs.

Proofs-of-concept

(deprecated) Android application vulnerability analysis and Android pentest tool

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

This Script will help you to gather information about your victim or friend.

(Deprecated) Submit all images in your Kubernetes cluster to Anchore for a vulnerability check and check your configuration with kubeaudit

Remot3d: is a simple tool created for large pentesters as well as just for the pleasure of defacers to control server by backdoors

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

Complete Listing and Usage of Tools used for Ethical Hacking

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Tool to generate smart and powerful wordlists

A collection of android Exploits and Hacks

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Useful tools and scripts during Penetration Testing engagements

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Misc. Public Reports of Penetration Testing and Security Audits.

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Go Web Application Penetration Test

Apache Solr Injection Research

漏洞利用框架模块分享仓库

swiss army knife for hackers

平常看到好的渗透hacking工具和多领域效率工具的集合