555 Open source projects that are alternatives of or similar to Hunter

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

The SpecterOps project management and reporting engine

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Modern tactical exploitation toolkit.

A repository of tools for pentesting of restricted and isolated environments.

DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.

Directory Services Internals (DSInternals) PowerShell Module and Framework

A Golang implant that uses Slack as a command and control server

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Functions that can be used to gain Reverse Shells with PowerShell

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

🔪 Leak git repositories from misconfigured websites

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

Rubyfu, where Ruby goes evil!

link is a command and control framework written in rust

Top 100 Hacking & Security E-Books (Free Download)

🙃 Reverse Shell Cheat Sheet 🙃

Subdomain enumeration through various techniques

Web Application Security Scanner Framework

A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.

A Kerberos implementation built entirely in managed code.

A tool to automate penetration tests

A Powershell client for dnscat2, an encrypted DNS command and control tool.

A Modular Penetration Testing Framework

This repo will contain some basic pentest/RT commands.

Pode is a Cross-Platform PowerShell web framework for creating REST APIs, Web Sites, and TCP/SMTP servers

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Hacker101 CTF Writeup

Malleable C2 profiles for Cobalt Strike

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Linux Rootkits (4.x Kernel)

ConPtyShell - Fully Interactive Reverse Shell for Windows

A (partial) Python rewriting of PowerSploit's PowerView

Security tool to quickly audit Public Box files and folders.

A pentesting tool inspired by mr robot and derived by zphisher

Aggressor Script, Kits, Malleable C2 Profiles, External C2 and so on

A Docker container for remote penetration testing.

Template-Driven AV/EDR Evasion Framework

network reconnaissance toolkit

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

Android Apps, Roms and Platforms for Pentesting

A bash script for recon and DOS attacks

This is a quick script installation for resilient redirector using nginx reverse proxy and letsencrypt compatible with some popular Post-Ex Tools (Cobalt Strike, Empire, Metasploit, PoshC2).

基于Python + Django的AD\Exchange管理系统

Next generation web scanner

🦄🔒 Awesome list of secrets in environment variables 🖥️

💻 This VSTO Add-In allows the user to ping a list of servers and creates a file for Microsoft Remote Desktop Manager an Excel table. This is used for quickly determining which servers are offline in a list. It is written in 3 different versions as a VSTO Add-In in C# and VB.NET as well as a VBA Add-In.

Everything needed for doing CTFs

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A web application for generating custom XSS payloads

Command line tool that allows you to explore IoT devices by using Shodan API.