466 Open source projects that are alternatives of or similar to Msdat

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

Bruteforce HTTP Authentication

Nmap and NSE command line wrapper in the style of Metasploit

OneForAll是一款功能强大的子域收集工具

Create file system symbolic links from low privileged user accounts within PowerShell

A repository for scripting a mobile attack toolchain

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Terribad PrivEsc enumeration script for Windows systems

Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Fast Modular Web Interfaces Bruteforcer

d(ockerp)wn - a docker pwn tool manager

A fast, simple, recursive content discovery tool written in Rust.

Penetration tests guide based on OWASP including test cases, resources and examples.

Framework for rapid development and reusable of security tools

Awesome Node.js Security resources

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Pop shells like a master.

A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

A fast DOM based XSS vulnerability scanner with simplicity.

Burp Bounty profiles compilation, feel free to contribute!

红队综合渗透框架

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

My python3 implementation of a Forward Shell

整理一些内网常用渗透小工具

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Windows 权限提升 BadPotato

Open Redirect scanner - (out of date)

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

RFD Checker - security CLI tool to test Reflected File Download issues

Collection of different exploits

Tool for port forwarding & intranet proxy

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

Bypass UAC at any level by abusing the Task Scheduler and environment variables

This challenge is Inon Shkedy's 31 days API Security Tips.

cobaltstrike ms17-010 module and some other

Burp Suite extension to passively scan for applications revealing server error messages

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Automated Red Team Infrastructure deployement using Docker

Argus Advanced Remote & Local Keylogger For macOS and Windows

Search for Directory Traversal Vulnerabilities

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

Snoop — инструмент разведки на основе открытых данных (OSINT world)

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Sifter aims to be a fully loaded Op Centre for Pentesters

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

Git All the Payloads! A collection of web attack payloads.

🔨 Manage your website via terminal

Data leak checker & OSINT Tool

A collection of pentest tools and resources targeting Hadoop environments

Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

WireBug is a toolset for Voice-over-IP penetration testing

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Abusing Impersonation Privileges on Windows 10 and Server 2019

Generate Gmail Emailing Keyloggers to Windows.