463 Open source projects that are alternatives of or similar to HackingAllTheThings

CTF binary exploit code

Experiments on C/C++ Exploits

CamOver is a camera exploitation tool that allows to disclosure network camera admin password.

An integrated tool and a collection of snippets which helps in the various aspects of the terminal.

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

ProxyLogon(CVE-2021-26855+CVE-2021-27065) Exchange Server RCE(SSRF->GetWebShell)

Rage allows you to execute any file in a Microsoft Office document.

This powershell script has got to run in remote hacked windows host, even for pivoting

No description or website provided.

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

A collection of useful links for Pentesters

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Mac and hostname random changer

Unrestricted Lua Execution

Black Hat Python workshop for Disobey 2019

JSON RSA to HMAC and None Algorithm Vulnerability POC

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Malicious use of macho, such as dump-runtime-macho, function-hook.

BadUSB Teensy downexec exploit support Windows & Linux / Windows Cmd & PowerShell addUser exploit

Port of windbglib to x64dbgpy, in an effort to support mona.py in x64dbg.

Binary String Toolkit (BST). Quickly and easily convert binary strings for all your exploit development needs. 😎

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Collection of bash scripts I wrote to make my life easier or test myself that you may find useful.

GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations

图形化漏洞利用集成工具

Little Bug Bounty & Hacking Tools⚔️

A collection of resources I'm using while working toward the OSCP

Pentesting Framework is a bundle of penetration testing tools, Includes - security, pentesting, hacking and many more.

This script will you help to find the information about the website and to help in penetrating testing

this is a python module that contains functions and classes which are used to test the security of web/network applications. it's coded on pure python and it's very intelligent tool ! It can easily detect: XSS (relected/stored), RCE (Remote Code/Command Execution), SSTI, SSRF, CORS Misconfigurations, File Upload, CSRF, Path Traversal,.... Also, …

An IDA_Wrapper for linux, shipped with an Function Identifier. It works well with Driller on static linked binaries.

The first tool to download any Guitar Pro file, including 'Official' from Ultimate Guitar

Contained is all my reference material for my OSCP preparation. Designed to be a one stop shop for code, guides, command syntax, and high level strategy. One simple clone and you have access to some of the most popular tools used for pentesting.

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

Framework for rapid development and reusable of security tools

聚合Github上已有的Poc或者Exp，CVE信息来自CVE官网。Auto Collect Poc Or Exp from Github by CVE ID.

Very simple script(s) to hasten binary exploit creation

PENIOT: Penetration Testing Tool for IoT

RootMyTV is a user-friendly exploit for rooting/jailbreaking LG webOS smart TVs.

My notebook for OSCP Lab

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Reverse shell auto generator used for Hackthebox/OSCP/Pentest/LABExp

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.

POC code to crash Windows Event Logger Service

Graphical Web interface developed to facilitate the use of security information tools.

One of the few malware collection

Collection of different exploits

Proxy token to allow mitigating EOSIO Ram exploit

Unsigned code loader for Exynos BootROM

It's a Docker Environment for pentesting which having all the required tool for VAPT.

python script allow red teaming , hackthebox Pwners , OSCP lovers to shorten their time by these useful shells

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

Powerful dork searcher and vulnerability scanner for windows platform

CVE-2019-10149 : A flaw was found in Exim versions 4.87 to 4.91 (inclusive). Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.

kernel-pwn and writeup collection

A collection of JavaScript Codes I've made to enhance the User Experience of Discord and some other Discord related stuff

A personal collection of Windows CVE I have turned in to exploit source, as well as a collection of payloads I've written to be used in conjunction with these exploits.

OpenSSH remote DOS exploit and vulnerable container

Some of my public exploits