1021 Open source projects that are alternatives of or similar to Lscript

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

ANDRAX The first and unique Penetration Testing platform for Android smartphones

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

🆕 The Multi-Tool Web Vulnerability Scanner.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

The Last Web Recon Tool You'll Need

CVE-2016-8610 (SSL Death Alert) PoC

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Penetration Testing Platform

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Browse and search through nmap's NSE scripts.

⛔️ offsec batteries included

Venom - A Multi-hop Proxy for Penetration Testers

The all-in-one Red Team extension for Web Pentester 🛠

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

A web front-end for password cracking and analytics

Privilege Escalation Enumeration Script for Windows

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🔪 Leak git repositories from misconfigured websites

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

A collection of public offensive and defensive security related scripts for InfoSec students.

A fast web directory/file enumeration tool written in Rust

Vagrant VirtualBox environment for conducting an internal network penetration test

Penetration tests guide based on OWASP including test cases, resources and examples.

Go-deliver is a payload delivery tool coded in Go.

Code from Blackhat Python book

unix SSH post-exploitation 1337 tool

my oscp prep collection

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

🔄 A collection of mitmproxy inline scripts

📡 A python program to create a fake AP and sniff data.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

SSRF (Server Side Request Forgery) testing resources

Set of tools to audit SIP based VoIP Systems

Penetration test Achieve Knowledge Unite Rapid Interface

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Study Notes For Web Hacking / Web安全学习笔记

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

Automation for internal Windows Penetrationtest / AD-Security

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具