1334 Open source projects that are alternatives of or similar to Iblessing

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

hacker, ready for more of our story ! 🚀

Advanced Web Browser Fingerprinting

OWASP Joomla Vulnerability Scanner Project

SQL Injection Payload List

A static binary vulnerability scanner

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

hack tools

Advanced vulnerability scanning with Nmap NSE

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Apache Shiro 反序列化漏洞检测与利用工具

D(HE)ater is a proof of concept implementation of the D(HE)at attack (CVE-2002-20001) through which denial-of-service can be performed by enforcing the Diffie-Hellman key exchange.

Hourly updated database of exploit and exploitation reports

rsGen is a Reverse Shell Payload Generator for hacking.

A command-line tool for exploiting stack-based buffer overflow vulnerabilities.

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Proof of concept of VMSA-2017-0012

Vulners Python API wrapper

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Agent scanner for vulners.com

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Extensible framework for analyzing publicly available information about vulnerabilities

Fast and customizable vulnerability scanner For JIRA written in Python

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

⛷ A collection of hacker scripts.

SEC分布式资产扫描系统

Extraction of iMessage Data via XSS

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

Adobe Experience Manager Vulnerability Scanner

Security scanner for your Terraform code

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

DoS PoC's for SAP products

Unsigned code loader for Exynos BootROM

Some of my public exploits

A collection of my quick and dirty scripts for vulnerability POC and detections

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Kubernetes security and vulnerability tools and utilities.

Guest to host VM escape exploit for Parallels Desktop

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Powerful dork searcher and vulnerability scanner for windows platform

图形化漏洞利用集成工具

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

👨‍💻 A work-in-progress web services mass scanner written in Rust

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

ProxyToken (CVE-2021-33766) : An Authentication Bypass in Microsoft Exchange Server POC exploit

Misc. Public Reports of Penetration Testing and Security Audits.

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

My exploitDB.

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint.

Log4j Vulnerability Scanner for Windows

Rapidly scan filesystems for Java programs potentially vulnerable to Log4Shell (CVE-2021-44228) or "that Log4j JNDI exploit" by inspecting the class paths inside files

Remote command execution vulnerability scanner for Log4j.

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

🕵️‍♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.