1117 Open source projects that are alternatives of or similar to Hawkeye

Dradis Framework: Colllaboration and reporting for IT Security teams

Fast web fuzzer written in Go

Automatically Launch Google Hacking Queries Against A Target Domain

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

HostHunter a recon tool for discovering hostnames using OSINT techniques.

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Advanced Web Shell

BlackRAT - Java Based Remote Administrator Tool

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Hacking Toolkit

Ruby on Rails Phishing Framework

Intelligence tool but without API key

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A list of resources for those interested in getting started in bug bounties

Semi-automatic OSINT framework and package manager

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

👥😈 Infect a pc with badusb and establish a connection through telegram.

Simple Server Side Request Forgery services enumeration tool.

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.

DNS Rebinding Exploitation Framework

Operational Security utility and automator.

🔪 Leak git repositories from misconfigured websites

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

A tool to fastly get all javascript sources/files

Responsive Command and Control System

Fast Modular Web Interfaces Bruteforcer

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

Collection of quality safety articles. Awesome articles.

The best Hacking and PenTesting tools installer on the world

A collection of various awesome lists for hackers, pentesters and security researchers

my oscp prep collection

An ongoing list of virtual cybersecurity conferences.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Repositório com conteúdo sobre web hacking em português

Linux enumeration tool for pentesting and CTFs with verbosity levels

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Set of tools to audit SIP based VoIP Systems

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

A tool to hunt for publicly accessible DigitalOcean Spaces

A simple dns resolver of dns-record and web-record log server for pentesting

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

Study Notes For Web Hacking / Web安全学习笔记

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Python network worm that spreads on the local network and gives the attacker control of these machines.

The ultimate WinRM shell for hacking/pentesting

Know the dangers of credential reuse attacks.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.