657 Open source projects that are alternatives of or similar to Oscprepo

This program focuses on automating the download, installation and compilation of pentest tools from source

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Host Header Injection Checker

Hershell is a simple TCP reverse shell written in Go.

Hacking, pen-testing, and cyber-security related tools built with Python.

Generate Gmail Emailing Keyloggers to Windows.

NoneAge Blockchain Security Tutorial

Automated Cyber Offense

An advanced command-line search engine for Exploit-DB

A web front-end for password cracking and analytics

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Top 20 Kali Linux Related E-books (Free Download)

OWASP WEB Directory Scanner

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Infection Monkey - An automated pentest tool

KratosKnife is a Advanced BOTNET Written in python 3 for Windows OS. Comes With Lot of Advanced Features such as Persistence & VM Detection Methods, Built-in Binder, etc

Automatically Launch Google Hacking Queries Against A Target Domain

Powerfull XSS Scanning and Parameter analysis tool&gem

A collection of manifests that will create pods with elevated privileges.

A portable console aimed at making pentesting with PowerShell a little easier.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

List of Bluetooth BR/EDR/LE security resources

Learning Penetration Testing of Android Applications

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

VOIP Security Audit Framework

My OSCP notes

Python AV Evasion Tools

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Burp Commander written in Go

Post-Exploitation Framework

scripts to setup pentesting system and use during pentest

Automate Pentest Tool

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

Automatic SSRF fuzzer and exploitation tool

渗透测试方法论

Automated Red Team Infrastructure deployement using Docker

Python Books for Security

Python-based CLI Password Analyser (Reporting Tool)

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Bifrost C2. Open-source post-exploitation using Discord API

GUI based offensive penetration testing tool (Open Source)

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

RFD Checker - security CLI tool to test Reflected File Download issues

Discover Your Attack Surface!

The Web Application Hacker's Handbook - Extra Content

C2Hack, sharing tips and tricks for pentesters

🔄 A collection of mitmproxy inline scripts

Quickly analyze and reverse engineer Android packages

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier"

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.