538 Open source projects that are alternatives of or similar to mec-ng

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Exploits and Security Tools Framework 2.0.1

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

An advanced command-line search engine for Exploit-DB

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

An advanced graphical search engine for Exploit-DB

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Command line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Security Testing is not as simple as right click > Scan. It's messy, a tough game. What if you had missed to test just that one thing and had to regret later? Sh00t is a highly customizable, intelligent platform that understands the life of bug hunters and emphasizes on manual security testing.

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Удаленное подключение к android устройству, по средствам adb подключений.

This is an open source tool to dump the wifi profiles and cleartext passwords of the connected access points on the Windows machine. This tool will help you in a Wifi penetration testing. Furthermore, it is useful while performing red team or an internal infrastructure engagements.

Rubyfu, where Ruby goes evil!

This Script will produce all of the WPA2 Passwords used by various Router companies aswell as Fritzbox. All of these Passwords will be 16 Numbers in length. So it could get a bit large.

Cameradar hacks its way into RTSP videosurveillance cameras

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Multi source CVE/exploit parser.

Pentest: Subdomains enumeration tool for penetration testers.

Work in progress...

⌨️ Wordlists, Dictionaries and Other Data Sets for Writing Software Security Test Cases

CyberQueens lesson materials - learning resources and exercises for aspiring reverse engineers, exploit developers, and hackers 👩‍💻👨‍💻

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

The LAZY script will make your life easier, and of course faster.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)

HackerWeb 2: A read-only Hacker News client.

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

A dictionary attack tool for PostgreSQL and MSSQL

Mobile penetration testing android & iOS command cheatsheet

CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

C++/Win32/Boost Windows RAT (Remote Administration Tool) with a multiplatform Java/Spring RESTful C2 server and Go, C++/Qt5 frontends

Instagram Hacking Tool is a phishing tool, it will help you to hack Instagram Accounts using fake login page.

SuperHacker is the ultimate utility to make you look like a hacker.

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

Vagrant VirtualBox environment for conducting an internal network penetration test

DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.

Collect email addresses by crawling search engine results.

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

Hakku Framework penetration testing

Generates malicious LNK file payloads for data exfiltration

PowerShell payload generator

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.

Microsoft Azure Exploitation Framework

Collection of the cheat sheets useful for pentesting

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Turn PuTTY into an SSH login bruteforcing tool.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.