655 Open source projects that are alternatives of or similar to hacker-scripts

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

pentest framework

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

DDOS Archive by RootSec (Scanners, BotNets (Mirai and QBot Premium & Normal and more), Exploits, Methods, Sniffers)

Bluetooth scanner for local devices that may be vulnerable to Blueborne exploit

OWASP Joomla Vulnerability Scanner Project

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

SVScanner - Scanner Vulnerability And MaSsive Exploit.

my oscp prep collection

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Android Credit Card Scanner using CameraX and ML Kit

多合一网站指纹扫描器，轻松获取网站的 IP / DNS 服务商 / 子域名 / HTTPS 证书 / WHOIS / 开发框架 / WAF 等信息

Web Services for Devices (WSD) tools and utilities for cross platform support

Exploiting challenges in Linux and Windows

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

Basic tool to automate backdooring PE files

Agent scanner for vulners.com

一款监控端口变化的系统——beholder_web端

Simple script that utilities discord's flaw in detecting who blocked who.

Unrestricted Lua Execution

🕷️ 🕷️ 🕷️ Validate SSL Certificates around web

Kubernetes security and vulnerability tools and utilities.

Self defense post module for metasploit

Python Powered Repository

CRAX: software CRash analysis for Automatic eXploit generation

Various scanner use cases using Firebase or HMS ML-Kit

A minimalist re-implementation of the Fusée Gelée exploit (http://memecpy.com), designed to run on embedded Linux devices. (Zero dependencies)

A collection of my quick and dirty scripts for vulnerability POC and detections

RFMap - Radio Frequency Mapper

Guest to host VM escape exploit for Parallels Desktop

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

This is a companion software based on the Acunetix Web Vulnerability Scanner 12、13、14 (AWVS 12、AWVS 13、AWVS 14) scanning engine.

Helm Charts For Installing Aqua Security Components

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

一款监控端口变化的系统——beholder_scanner端

CTF binary exploit code

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

BadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit

Scans Genshin Impact characters, artifacts, and weapons from the game window into a JSON file.

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Firefox extension which parses the headers of all the requests which are being flowing through your firefox browser to detect for vulnerabilities.

Http request smuggling vulnerability scanner

Peter's Parallel Network Scanner

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

INTERCEPT / Policy as Code Static Analysis Auditing / SAST

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

ProFTPd 1.3.5 - (mod_copy) Remote Command Execution exploit and vulnerable container

Ethereum Smart Contracts Security Monitoring

Bypass 403 or 401 or 404

Extensible framework for analyzing publicly available information about vulnerabilities