511 Open source projects that are alternatives of or similar to Odat

A tool to automate penetration tests

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

Find exploit tool

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Attack Surface Management Platform | Sn1perSecurity LLC

Apache Solr Injection Research

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Penetration Testing notes, resources and scripts

Web path scanner

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Hershell is a simple TCP reverse shell written in Go.

Generate unicode evil domains for IDN Homograph Attack and detect them.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Automatically Launch Google Hacking Queries Against A Target Domain

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

WADComs is an interactive cheat sheet, containing a curated list of Unix/Windows offensive tools and their respective commands.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

The Web Application Hacker's Handbook - Extra Content

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Wordpress Attack Suite

Quickly analyze and reverse engineer Android packages

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

Pentest Report Generator

A Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

Tool for port forwarding & intranet proxy

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Universal command-line interface for SQL databases

Abusing Impersonation Privileges on Windows 10 and Server 2019

Sifter aims to be a fully loaded Op Centre for Pentesters

Testing Framework for PL/SQL

Pentest environment deployer (kali linux + targets) using vagrant and chef.

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

OSINT Swiss Army Knife

A list of resources for those interested in getting started in bug bounties

Generate Gmail Emailing Keyloggers to Windows.

A fully featured Windows backdoor that uses Gmail as a C&C server

linux-kernel-exploits Linux平台提权漏洞集合

windows-kernel-exploits Windows平台提权漏洞集合

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

SS7 MAP (pen-)testing toolkit. DISCONTINUED REPO, please use: https://github.com/0xc0decafe/ss7MAPer/

Browser's XSS Filter Bypass Cheat Sheet

Chef repository for pentesting tools

The Last Web Recon Tool You'll Need

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

OWASP WEB Directory Scanner

用于记录内网渗透(域渗透)学习 :-)

渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker

Powerfull XSS Scanning and Parameter analysis tool&gem

A Golang implant that uses Slack as a command and control server

红蓝对抗跨平台远控工具

Database management for VSCode