738 Open source projects that are alternatives of or similar to Msploitego

Gorsair hacks its way into remote docker containers that expose their APIs

Hacking Tools Z0172CK

Web path scanner

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Subdomain enumeration through various techniques

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Top 20 Kali Linux Related E-books (Free Download)

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Idiomatic nmap library for go developers

Various Metasploit Modules

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Attack Surface Management Platform | Sn1perSecurity LLC

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

👨‍💻 Impress your friends by pretending to be a real hacker

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

MSFvenom Payload Creator (MSFPC)

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Single Page Cheatsheet for common MSF Venom One Liners

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

A collection of public offensive and defensive security related scripts for InfoSec students.

An advanced graphical search engine for Exploit-DB

Venom - A Multi-hop Proxy for Penetration Testers

基于masscan和nmap的快速端口扫描和指纹识别工具，优化版本(获取标题，页面长度,过滤防火墙)

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Apple CUPS Sources

Detect hidden files and text in images

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Undetectable Windows Payload Generation

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

wooyun public information backup

A simple bash based metasploit automation tool!

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Another monitoring application, intentend to be simple to use and extensible.

A collection of Ansible roles for automating infosec builds.

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Elasticsearch for Offensive Security

VOIP Security Audit Framework

Infection vector that bypasses AV, IDS, and IPS. (For now...)

SNMP MIB parser

Work in progress...

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

Set of tools to audit SIP based VoIP Systems

SNMP Template generator for Zabbix

Nmap custom probes for better detecting SAP services

Open-source IoT Platform - Device management, data collection, processing and visualization.

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Powershell script to setup windows port forwarding using native netsh client

XSHOCK Shellshock Exploit

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

An awesome resource listing and explaining various commonly used *nix commands

SSH man-in-the-middle tool

Automated Cyber Offense

Set of Icinga/Nagios plugins to check hosts and hardware with the SNMP protocol.