467 Open source projects that are alternatives of or similar to Http Asynchronous Reverse Shell

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Golang reverse/bind shell generator

Passwords Recovery Tool

A tool to hunt for publicly accessible DigitalOcean Spaces

File upload vulnerability scanner and exploitation tool.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

🔨 A multiple reverse shell session/client manager via terminal

A tool to abuse Exchange services

Python script wrote to automate the process of generating various reverse shells.

Python network tool, similar to Netcat with custom features.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Human and machine readable web vulnerability testing format

An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners.

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + Dinvoke for EDR user-mode hooking evasion.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

🚀 Fast Port Scanner 🚀

my oscp prep collection

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Network protocol auditing framework

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

small python3 tool to check common vulnerabilities in SMTP servers

A wrapper for Nmap to quickly run network scans

Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

A container repository for my public web hacks!

Centralize Vulnerability Assessment and Management for DevSecOps Team

Fast Modular Web Interfaces Bruteforcer

Relational database brute force and post exploitation tool for MySQL and MSSQL

Script to automate PUT HTTP method exploitation to get shell

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

mosquito - Automating reconnaissance and brute force attacks

Hashcat web interface

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

The ultimate WinRM shell for hacking/pentesting

Python3 script to parse txt files containing Mimikatz output

A high performance offensive security tool for reconnaissance and vulnerability scanning

A Cloudflare resolver that works

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

A Python3 based single-file subdomain enumerator

WhiteWinterWolf's PHP web shell

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

WaTF Bank - What a Terrible Failure Mobile Banking Application for Android and iOS

Red Teaming Tactics and Techniques

BlackRAT - Java Based Remote Administrator Tool

备考 OSCP 的各种干货资料/渗透测试干货资料

For all your network pentesting needs

A simple dns resolver of dns-record and web-record log server for pentesting

Exploit pack for pentesters and ethical hackers.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Python Remote Administration Tool (RAT)