566 Open source projects that are alternatives of or similar to Metasploit Cheat Sheet

Advanced Android AV Evasion Tool Written In Python 3 that can Embed/Bind meterpreter APK to any Legitimate APK

Scan and Export RouterOS Password

Penetration test Achieve Knowledge Unite Rapid Interface

📖 [译] SploitFun Linux x86 Exploit 开发系列教程

my oscp prep collection

CryptoLocker is open source files encrypt-er. Crypto is developed in Visual C++. It has features encrypt all file, lock down the system and send keys back to the server. Multi-threaded functionality helps to this tool make encryption faster.

A general purpose memory allocator that implements an isolation security strategy to mitigate memory safety issues while maintaining good performance

A local privilege escalation chain from user to kernel for MacOS < 10.15.5. CVE-2020–9854

Undetectable Windows Payload Generation

Exploitation and Mitigation Slides

RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1

Blueborne CVE-2017-0781 Android heap overflow vulnerability

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

Public repository of static GDB and GDBServer

A collection of electronic hacker magazines carefully curated over the years from multiple sources

My proof-of-concept exploits for the Linux kernel

CVE-2020-0688_EXP Auto trigger payload & encrypt method

pwninit - automate starting binary exploit challenges

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Go-deliver is a payload delivery tool coded in Go.

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

Some of my CTF solutions

Various local exploits

AutoIt HackTool, Shortcuts .lnk Payloads Generator As LNK-KISSER.

Find exploits in local and online databases instantly

用cel-go重现了长亭xray的poc检测功能的轮子

😎 Curated list about cryptocurrency security (reverse / exploit / fuzz..)

exploit

Focus on cybersecurity | collection of PoC and Exploits

PoC materials for article https://habr.com/en/post/486856/

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

Forward shell generation framework

backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.

📢 🔒 Exploit farm for attack-defense CTF competitions

CVE-2019-1458 Windows LPE Exploit

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

NSA Hacking Tool Recreation UnitedRake

A container repository for my public web hacks!

Disabling kernel lockdown on Ubuntu without physical access

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

metasploit中文wiki

Plaintext Password harvesting from Azure Windows VMs

Here you can get full exploit for SAP NetWeaver AS JAVA

Security and Hacking Tools, Exploits, Proof of Concepts, Shellcodes, Scripts.

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Docker images for infosec tools

Check if your VPN leaks your IP address via the WebRTC technology

A semi-demi-working proof of concept for a mix of spectre and meltdown vulnerabilities

This project intends to provide a series of tools to craft, parse, send, analyze and crack a set of LoRaWAN packets in order to audit or pentest the security of a LoraWAN infrastructure.

Penetration tests guide based on OWASP including test cases, resources and examples.

Fully Featured Nintendo DS Loader for Ghidra

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

The best tool for finding one gadget RCE in libc.so.6

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

checksum-reproducible tar archives (utility/library)

Asynchronous Python implementation of SlowLoris DoS attack