820 Open source projects that are alternatives of or similar to Hacktricks

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

BlackRAT - Java Based Remote Administrator Tool

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

A tool to fastly get all javascript sources/files

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Rockyou for web fuzzing

retrieve information via O365 with a valid cred

Cameradar hacks its way into RTSP videosurveillance cameras

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Python network worm that spreads on the local network and gives the attacker control of these machines.

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

👻 A LAN dropbox chatbot controllable via Telegram

locate and attack Lync/Skype for Business

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🤖 The Modern Port Scanner 🤖

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

My own OSCP guide

Quickly analyze and reverse engineer Android packages

A curated list of awesome privilege escalation

DNS Rebinding Exploitation Framework

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Useful tools and scripts during Penetration Testing engagements

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Hacking Toolkit

Web path scanner

Penetration Testing notes, resources and scripts

Study Notes For Web Hacking / Web安全学习笔记

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Micro-framework for rapid development of reusable security tools

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

For all your network pentesting needs

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Full Speed Instagram Cracker

Xiaomi Smart Home Device Reverse Engineering and Hacking

JSshell - JavaScript reverse/remote shell

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

Windows one line commands that make life easier, shortcuts and command line fu.

Social media & camera hacking & whatsapp virus & SMS bombing

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

File upload vulnerability scanner and exploitation tool.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

🔓 A dynamic dictionary merger for successful dictionary based attacks.

This repository contains reference material & links for people willing to learn Ethical Hacking

200 TOOLS BY 0XID4FF0X FOR TERMUX

🐙 Cross-document messaging security research tool powered by https://enso.security

Automated brute-forcing attack tool.

🐱‍💻 Tiny Tiny Hacks we use in our daily life.