1721 Open source projects that are alternatives of or similar to Packetwhisper

Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.

Hetty is an HTTP toolkit for security research.

Just another script for automatize boolean-based blind SQL injections. (Demo)

Template-Driven AV/EDR Evasion Framework

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.

Collection of IT whitepapers, presentations, pdfs; hacking, web app security, db, reverse engineering and more; EN/PL.

Minimalist secure text editor and binary encryptor that implements RFC 4880 Open PGP format: symmetrically encrypted, compressed and integrity protected. The editor can protect files with passwords, key files or both.

Quick utility to craft executables for pentesting and managing reverse shells

This is a quick script installation for resilient redirector using nginx reverse proxy and letsencrypt compatible with some popular Post-Ex Tools (Cobalt Strike, Empire, Metasploit, PoshC2).

Enumerate and disable common sources of telemetry used by AV/EDR.

Secure API Toolkit

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

Invisible Hyperlinks in Physical Photographs

Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities

Collaborative malware analysis framework

Command line tool that allows you to explore IoT devices by using Shodan API.

Web Recon & Exploitation Tool.

Pwnable|Web Security|Cryptography CTF-style challenges

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Do some quick reconnaissance on a domain-based web-application

A Filesystem Built On Top of the Web.

Repository of my CTF writeups

Protecting Red Team infrastructure with cyber shield blocking AWS/AZURE/IBM/Digital Ocean/TOR/AV IP/ETC. ranges

一键提取安卓应用中可能存在的敏感信息。

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

Web Pentesting Fuzz 字典,一个就够了。

Facebook Write-ups, PoC, and exploitation codes:

Open Redirect scanner - (out of date)

A collected list of awesome security talks

List of every possible vulnerabilities in computer security.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Everything needed for doing CTFs

Hashtopolis - A Hashcat wrapper for distributed hashcracking

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

Advisories, proof of concept files and exploits that have been made public by @pedrib.

Summary of online learning materials

🎯 XML External Entity (XXE) Injection Payload List

Works cool: I use a secure app to chat. Next level: I encrypt my chats with a private key. Intergalactic level: I encrypt my chats with a one-time token and then make them deceptively public ;)

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

Botnet targeting Windows machines written entirely in Python & open source security project.

Get PROXY List that gets updated everyday

This repository contains full code examples from the book Gray Hat C#

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

link is a command and control framework written in rust

AWS Serverless Security

Multi OTP Spam Amp/Paralell threads

A tool for fuzzing for ports that allow outgoing connections

Open-Source Ransomware As A Service for Linux, MacOS and Windows

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

A repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.

Dorothy is a tool to test security monitoring and detection for Okta environments

core code for High-Capacity Convolutional Video Steganography with Temporal Residual Modeling