935 Open source projects that are alternatives of or similar to Pakuri

Hacking Toolkit

TechNowHorse is a RAT (Remote Administrator Trojan) Generator for Windows/Linux systems written in Python 3.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

A wrapper for Nmap to quickly run network scans

A tool to test security of json web token

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

an easy pentesting tool.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

备考 OSCP 的各种干货资料/渗透测试干货资料

Penetration Testing Platform

A collection of manifests that will create pods with elevated privileges.

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Exploit Pack -The next generation exploit framework

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

整理一些内网常用渗透小工具

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Hourly updated database of exploit and exploitation reports

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

MSFvenom Payload Creator (MSFPC)

dr.rer.oec.gadget IDAPython plugin for the Interactive Disassembler <ABANDONED PROJECT>

Go library for credentials recovery

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

🆕 The Multi-Tool Web Vulnerability Scanner.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Undetectable Windows Payload Generation

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

A collection where my current and future writeups for exploits/CTF will go

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Web Recon & Exploitation Tool.

A tool to automate penetration tests

MS17-010: Python and Meterpreter

Burp extension to passively scan for applications revealing software version numbers

Automation for internal Windows Penetrationtest / AD-Security

Pentest Report Generator

Sifter aims to be a fully loaded Op Centre for Pentesters

Automated Mass Exploiter

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

hydra

unix SSH post-exploitation 1337 tool

Yet Another PHP Shell - The most complete PHP reverse shell

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Web path scanner

Linux Binary Exploitation

This script will you help to find the information about the website and to help in penetrating testing

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Burp Suite extension to passively scan for applications revealing server error messages

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Awesome Node.js Security resources

The Offensive Manual Web Application Penetration Testing Framework.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Common password pattern generator using strings list

GitBook: OSCP RoadMap

S2E: A platform for multi-path program analysis with selective symbolic execution.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)