2338 Open source projects that are alternatives of or similar to Hacking

Security scanner for your Terraform code

Python Security Scripts

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

A collection of my quick and dirty scripts for vulnerability POC and detections

JSON RSA to HMAC and None Algorithm Vulnerability POC

Apache Solr Injection Research

The Web Application Hacker's Handbook - Extra Content

A Proof-of-Concept tool utilizing open DNS resolvers to produce an amplification attack against web servers. Using Shodan APIs and native Linux commands, this tool is in development to cripple web servers using spoofed DNS recursive queries.

Python toolbox to evaluate graph vulnerability and robustness (CIKM 2021)

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Hacking resources and cheat sheets. References, tools, scripts, tutorials, and other resources that help offensive and defensive security professionals.

FPGA-based LPC bus sniffing tool for Lattice iCEstick Evaluation Kit

SEC分布式资产扫描系统

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs

Juniper Junos Space (CVE-2020-1611) (PoC)

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).

ALL IN ONE Hacking Tool For Hackers

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

👨‍💻 A work-in-progress web services mass scanner written in Rust

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Web Recon & Exploitation Tool.

🕵️‍♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

This Script will help you to gather information about your victim or friend.

SQL Injection Payload List

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Log4j Vulnerability Scanner for Windows

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Hacking tools

Tool-X is a kali linux hacking Tool installer. Tool-X developed for termux and other Linux based systems. using Tool-X you can install almost 370+ hacking tools in termux app and other linux based distributions.

Refluxion -- MITM WPA attacks tool

Kubernetes Native, Runtime Container Image Scanning

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint.

Command line tool that allows you to explore IoT devices by using Shodan API.

Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files

CTF (Capture The Flag) writeups, code snippets, notes, scripts

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

Automation scripts for Instagram

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

Scans PHP files for malwares and known threats

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

SSL and TLS protocol test suite and fuzzer

Git repository summary on your terminal

Free Security and Hacking eBooks

Idiomatic nmap library for go developers

A text snippet tool for Windows.

An asynchronous enumeration & vulnerability scanner. Run all the tools on all the hosts.

Transform svg files to json notation

TINU, the open tool to create bootable macOS installers

This repository is a collection of resources to prepare for the Certified Kubernetes Security Specialist (CKSS) exam.

Python tool that monitors and logs user-run commands on a Linux system for either offensive or defensive purposes..