1753 Open source projects that are alternatives of or similar to Ntlmrecon

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Australian Open Source Intelligence Gathering Resources, Australias Largest Open Source Intelligence Repository for Cyber Professionals and Ethical Hackers

Asynchronous Python implementation of SlowLoris DoS attack

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

The best Hacking and PenTesting tools installer on the world

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

GitHub Recon — and what you can achieve with it!

bug bounty hunters starter notes

Data leak checker & OSINT Tool

红队作战中比较常遇到的一些重点系统漏洞整理。

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

Get All Registered Wifi Passwords from Target Computer.

Robot Vulnerability Database. An archive of robot vulnerabilities and bugs.

Automation for internal Windows Penetrationtest / AD-Security

OSINT Framework

The Swiss Army knife for 802.11, BLE, IPv4 and IPv6 networks reconnaissance and MITM attacks.

Framework для сбора данных из открытых источников. В Framework используется большое количество API, их необходимо зарегистрировать самому.​

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Urls de-duplication tool for better recon.

BEST HACKING TOOLS..For more tools visit our blog for Hackers

The Collective. A repo for a collection of red-team projects found mostly on Github.

A super portable botnet framework with a Django-based C2 server. The client is written in C++, with alternate clients written in Rust, Bash, and Powershell.

Collection of quality safety articles. Awesome articles.

Simple shell script for automated domain recognition with some tools

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

SocialPwned is an OSINT tool that allows to get the emails, from a target, published in social networks such as Instagram, Linkedin and Twitter to find possible credentials leaks in PwnDB.

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

A toolkit for Security Researchers

An ongoing list of virtual cybersecurity conferences.

Your Google Recon is Now Automated

A collection of personal scripts used in hacking excercises.

bash scripting thing !

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

A permutation generation tool written in golang

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

OSINT tool - gets data from services like shodan, censys etc. in one app

internet monitoring osint telegram bot for windows

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.

Automatic Service Enumeration Script

Automated NoSQL database enumeration and web application exploitation tool.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

In-depth Attack Surface Mapping and Asset Discovery

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Enine boyuna siber güvenlik

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Authors

Offensive tools as Dockerfiles. Lightweight & Ready to go

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.