943 Open source projects that are alternatives of or similar to Jsshell

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

ALL IN ONE Hacking Tool For Hackers

A framework for pentesters that facilitates evil twin attacks as well as exploiting other wifi vulnerabilities

Collection of things made during my OSCP journey

Reverse Shell as a Service

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Unsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest

✔️ CTF problems and solutions solved by Qwaz

Pop shells like a master.

Example of using revealed "Spectre" exploit (CVE-2017-5753 and CVE-2017-5715)

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

🔓 A dynamic dictionary merger for successful dictionary based attacks.

Research on Anti-malware and other related security solutions

Repositório com conteúdo sobre web hacking em português

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Reference: http://www.secgeek.net/bookfresh-vulnerability/

This custom Fail2Ban filter and jail will deal with all scans for common Wordpress, Joomla and other Web Exploits being scanned for by automated bots and those seeking to find exploitable web sites.

Extracts text from video games and visual novels. Highly extensible.

Allows you to crash any Windows user

Ruby on Rails Phishing Framework

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

OWASP Joomla Vulnerability Scanner Project

linux动态链接库的注入修改查找工具 A tool for injection, modification and search of linux dynamic link library

Hacking Toolkit

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

☕ Latte: the intuitive and fast template engine for those who want the most secure PHP sites.

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

Attify OS - Distro for pentesting IoT devices

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

Proves JVM cheats are viable on native games, and demonstrates the longevity against anti-cheat signature detection systems

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

A portable, simple zip library written in C

A permutation generation tool written in golang

A big list of Android Hackerone disclosed reports and other resources.

Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.

PoC exploit for arbitrary file read/write in locked Samsung Android device via MTP (SVE-2017-10086)

An IDA Pro plugin to examine the glibc heap, focused on exploit development

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

bash scripting thing !

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Black Worm Offical Repo

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Automated Red Team Infrastructure deployement using Docker

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

Set of tools to audit SIP based VoIP Systems

ssh management tool to provides commandline access to a remote system running SSH server

Linux enumeration tool for pentesting and CTFs with verbosity levels

Riscure Hack Me embedded hardware CTF 2017-2018.

XSHOCK Shellshock Exploit

Message Queue & Broker Injection tool

Let's find someone's account

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

An ongoing list of virtual cybersecurity conferences.