657 Open source projects that are alternatives of or similar to Oscprepo

Goca Scanner

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A cross-platform python based utility for information gathering and penetration testing automation!

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

An advanced graphical search engine for Exploit-DB

Useful tools and scripts during Penetration Testing engagements

Web Application Security Scanner Framework

A list of resources for those interested in getting started in bug bounties

SSH man-in-the-middle tool

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

Apache Solr Injection Research

A Modular Penetration Testing Framework

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Selenium powered Python script to automate searching for vulnerable web apps.

Script collection to bypass Network Access Control (NAC, 802.1x)

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Security Tool to Look For Interesting Files in S3 Buckets

Functions that can be used to gain Reverse Shells with PowerShell

🐶 A curated list of Web Security materials and resources.

Security tool to quickly audit Public Box files and folders.

Burp Bounty profiles compilation, feel free to contribute!

A pentesting tool inspired by mr robot and derived by zphisher

Self contained htaccess shells and attacks

parse nmap files

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Command line tool that allows you to explore IoT devices by using Shodan API.

Web App Pen Tester (Web Interface)

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Oracle Database Penetration Testing Reference (10g/11g)

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Common password pattern generator using strings list

wooyun public information backup

A fast web directory/file enumeration tool written in Rust

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Dradis Framework: Colllaboration and reporting for IT Security teams

My notes on PentesterLab's Bootcamp series 🕵️

Gorsair hacks its way into remote docker containers that expose their APIs

WireBug is a toolset for Voice-over-IP penetration testing

Our OSCP repo: from popping shells to mental health.

Password-protected writeups of HTB platform (challenges and boxes) https://cesena.github.io/

IPv6 attack toolkit

Penetration test Achieve Knowledge Unite Rapid Interface

Generate unicode evil domains for IDN Homograph Attack and detect them.

cms识别

Work in progress...

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Collection of quality safety articles. Awesome articles.

Hershell is a simple TCP reverse shell written in Go.

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Automatically Launch Google Hacking Queries Against A Target Domain

A collection of manifests that will create pods with elevated privileges.

A portable console aimed at making pentesting with PowerShell a little easier.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

Discover Your Attack Surface!

The Web Application Hacker's Handbook - Extra Content