551 Open source projects that are alternatives of or similar to link

Notes from OSCP, CTF, security adventures, etc...

Collect email addresses by crawling search engine results.

Discover Your Attack Surface!

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Automated Penetration Testing Framework

NekRos is an Open-Source Ransomeware, with advanced Features, Which Looks Like Wannacry and Has C&C Server which can be Used to Retrive KEY

Burp extension to passively scan for applications revealing software version numbers

Search Google and download specific file types

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Dorothy is a tool to test security monitoring and detection for Okta environments

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

An open-source, centralized HTTPS botnet

Collection of tips, tools and tutorials around infosec

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

This Script will produce all of the WPA2 Passwords used by various Router companies aswell as Fritzbox. All of these Passwords will be 16 Numbers in length. So it could get a bit large.

Scripts I use during pentest engagements.

Statically-linked ssh server with reverse shell functionality for CTFs and such

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Purelove is a lightweight penetration testing framework, in order to better security testers testing holes with use.

🆕 The Multi-Tool Web Vulnerability Scanner.

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Hacking arsenal. This script download the latest tools, wordlists, releases and install common hacking tools

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Host Header Injection Checker

Self contained htaccess shells and attacks

Work in progress...

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

A wrapper for Nmap to quickly run network scans

Gorsair hacks its way into remote docker containers that expose their APIs

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Customized Kali Linux - Ansible playbook

Don't let buffer overflows overflow your mind

Ruby on Rails Phishing Framework

Microsoft Azure Exploitation Framework

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

USB Rubber Ducky type scripts written for the DigiSpark.

Kali image with kali-linux-full metapackage installed, build every night.

DotDotPwn - The Directory Traversal Fuzzer

Offensive Reverse Shell (Cheat Sheet)

Infection Monkey - An automated pentest tool

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

retrive metadata endpoint data with these one liners.

Wireshark Cheat Sheet

An RPC attack framework for Blockchain nodes.

Autowin is a framework that helps organizations simulate custom attack scenarios in order to improve detection and response capabilities.

Study Notes For Web Hacking / Web安全学习笔记

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

A tool to test security of json web token

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Cheat-Sheet of tools for penetration testing

A collection of hacking / penetration testing resources to make you better!

Penetration test Achieve Knowledge Unite Rapid Interface