566 Open source projects that are alternatives of or similar to Metasploit Cheat Sheet

A collection of hacking / penetration testing resources to make you better!

Reference: http://www.secgeek.net/bookfresh-vulnerability/

Allows you to crash any Windows user

PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)

Repository to train/learn memory corruption on the ARM platform.

Metasploit Modules for OPC UA

Public repository of static GDB and GDBServer

Hacking Toolkit

My proof-of-concept exploits for the Linux kernel

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation

CVE-2020-0688_EXP Auto trigger payload & encrypt method

A simple PHP application to learn SQL Injection detection and exploitation techniques.

Reflective PE packer.

Exfiltration based on custom X509 certificates

Some of my CTF solutions

ROP Benchmark is a tool to compare ROP compilers

Modern tactical exploitation toolkit.

PSR-15 middleware to parse the body of the request with support for json, csv and url-encode

Various local exploits

Simple program for detecting if host(s) are vulnerable to SMB exploit(MS17-010)

Kage is Graphical User Interface for Metasploit Meterpreter and Session Handler

Powerful dork searcher and vulnerability scanner for windows platform

Find exploits in local and online databases instantly

Gerar payload para qrcode estático PIX. (Sistema de pagamento instantâneo do Brasil) Sem a necessidade de conexão com um PSP.

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯

Advanced Web Browser Fingerprinting

Automated Red Team Infrastructure deployement using Docker

Focus on cybersecurity | collection of PoC and Exploits

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

An overlay attack example

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Top 20 Kali Linux Related E-books (Free Download)

PoC materials for article https://habr.com/en/post/486856/

The Most Powerful Fake Page Redirecting tool...

Umbraco CMS 7.12.4 - (Authenticated) Remote Code Execution

Forward shell generation framework

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

NXcrypt - 'python backdoor' framework

android proxy setting tool

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.

No description or website provided.

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

CTF中Pwn的快速利用模板（包含awd pwn）

NSA Hacking Tool Recreation UnitedRake

Blazing fast, advanced Padding Oracle exploit

This tool will setting up your backdoor/rootkits when backdoor already setup it will be hidden your spesisifc process,unlimited your session in metasploit and transparent. Even when it killed, it will re-run again. There always be a procces which while run another process,So we can assume that this procces is unstopable like a Ghost in The Shell

A container repository for my public web hacks!

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.68

Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities

Green-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

🎯 XML External Entity (XXE) Injection Payload List

An exploit for Apache Struts CVE-2018-11776

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

A friendly car security exploration tool for the CAN bus