1021 Open source projects that are alternatives of or similar to Lscript

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Our OSCP repo: from popping shells to mental health.

File upload vulnerability scanner and exploitation tool.

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

Fast browser-based network discovery module

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

A polyglot payload generator

Kali Linux 工具合集中文说明书

Work in progress...

Automated Security Testing For REST API's

Script samples from the book Pentesting Azure Applications (2018, No Starch Press)

Advanced and easy to use penetration testing framework 💣🔎

An information gathering tool to collect git commit emails in version control host services

AutoIt HackTool, Shortcuts .lnk Payloads Generator As LNK-KISSER.

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

Evaluate the security of S3 buckets

Python script wrote to automate the process of generating various reverse shells.

XSHOCK Shellshock Exploit

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

Automated Cyber Offense

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

The iOS Security Testing Framework

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

Forward shell generation framework

Git All the Payloads! A collection of web attack payloads.

🎯 Open Redirect Payload List

metasploit中文wiki

Learning Penetration Testing of Android Applications

Python network worm that spreads on the local network and gives the attacker control of these machines.

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Pentest tool for antivirus evasion and running arbitrary payload on target Wintel host

Post-Exploitation Framework

SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique

Python Books for Security

A CPU-based JSON Web Token (JWT) cracker and - to some extent - scanner.

A repository of tools for pentesting of restricted and isolated environments.

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

Docker images for infosec tools

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

nnposter's alternate fingerprint dataset for Nmap script http-default-accounts

Simple Karma Attack

A place where I can create, collect and share tooling, resources and knowledge about information security.

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Micro-framework for rapid development of reusable security tools

Share of my Huge Collection of Cheatsheet (Coding, Cheat, Pinouts, Command Lists, Etc.)

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and had to regret later? Sh00t is a highly customizable, intelligent platform that understands the life of bug hunters and emphasizes on manual security testing.

Automated All-in-One OS Command Injection Exploitation Tool.

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

Multiplatform payload dropper