979 Open source projects that are alternatives of or similar to Nac_bypass

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

A list of payload and bypass lists for penetration testing and red team infrastructure build.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

🌒 Shell command obfuscation to avoid detection systems

Scan for and exploit Consul agents

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Passwords Recovery Tool

A poorman's proxycannon and botnet, using docker, ovpn files, and a dante socks5 proxy

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

ShellCodeLoader via DInvoke

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Offensive Reverse Shell (Cheat Sheet)

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Python AV Evasion Tools

Webshell Manager

Collection of quality safety articles. Awesome articles.

Its a framework filled with alot of options and hacking tools you use directly in the script from brute forcing to payload making im still adding more stuff i now have another tool out called htkl-lite its hackers-tool-kit just not as big and messy to see updates check on my instagram @tuf_unkn0wn or if there are any problems message me on instagram

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

Search for Unix binaries that can be exploited to bypass system security restrictions.

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Overlord - Red Teaming Infrastructure Automation

cobaltstrike ms17-010 module and some other

Free advanced and modern Windows botnet with a nice and secure PHP panel.

OSINT

Sifter aims to be a fully loaded Op Centre for Pentesters

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Open source all-in-one CLI tool to semi-automate pentesting.

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

The goal of this repository is to document the most common techniques to bypass AppLocker.

CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.

Jam all wifi clients/routers.

pentest framework

Penetration tests guide based on OWASP including test cases, resources and examples.

OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Hershell is a simple TCP reverse shell written in Go.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

smart-buffer is a Buffer wrapper that adds automatic read & write offset tracking, string operations, data insertions, and more.

✍🏻 这里是写博客的地方 —— Halfrost-Field 冰霜之地

A curated list of awesome I2P implementations, libraries, resources, projects, and shiny things. I2P is an anonymous overlay network - a network within a network. It is intended to protect communication from dragnet surveillance and monitoring by third parties such as ISPs.

Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]

Discourse Network Analyzer (DNA)

An efficient OSC implementation compatible with python2.7 and 3.5+

☄️ go-out - A Golang egress buster.

A vendor-agnostic NMS for carrier-grade network simulation and automation

A React Native ESC/POS module to help you connect to your ESC/POS printer easily.

PyTCP is an attempt to create fully functional TCP/IP stack in Python. It supports TCP stream based transport with reliable packet delivery based on sliding window mechanism and basic congestion control. It also supports IPv6/ICMPv6 protocols with SLAAC address configuration. It operates as user space program attached to Linux TAP interface. As of today stack is able to send and receive traffic over Internet using IPv4 and IPv6 default gateways for routing. Since goal of this project is purely educational (at least at this point) the clarity of code is preferred over its efficiency. For the same reason security features are not being implemented just yet unless they are integral part of TCP/IP suite protocols specification.

A Toolbox for Home Local Networks

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Escalation / Bypass Windows UAC

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

A high level API for making networked games in Unity, utilizes https://github.com/RevenantX/LiteNetLib

OBO-formatted ontologies → networkx (Python 3)

Profiling / Debugging assist tools for iOS. (Memory Leak, OOM, ANR, Hard Stalling, Network, OpenGL, Time Profile ...)

Network Security Notes ☔️