1091 Open source projects that are alternatives of or similar to Passhunt

PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier"

Find exploit tool

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Official Source of ItroublveTSC, totally open source. No virus or anything. Feel free to have a look :)

Sifter aims to be a fully loaded Op Centre for Pentesters

C# based tool which automates the process of discovering and exploiting DLL Hijacks in target binaries. The Hijacked paths discovered can later be weaponized during Red Team Operations to evade EDR's.

USB Rubber Ducky type scripts written for the DigiSpark.

A Python DNS crawler to find identical domain names under different TLDs.

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

John the Ripper jumbo - advanced offline password cracker, which supports hundreds of hash and cipher types, and runs on many operating systems, CPUs, GPUs, and even some FPGAs

Everything needed for doing CTFs

A collection of all the data i could extract from 1 billion leaked credentials from internet.

Steganography brute-force utility to uncover hidden data inside files

This is the main repository of International Data Spaces Association on GitHub, where you can find general overview and required information on IDS Open Source Landscape.

NFStream: a Flexible Network Data Analysis Framework.

News and publication on cybersecurity in industry

A Golang implant that uses Slack as a command and control server

Directory Services Internals (DSInternals) PowerShell Module and Framework

🎯 XML External Entity (XXE) Injection Payload List

Security guidance from the MOJ Digital & Technology Cybersecurity team

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

A Deep Learning Approach for Password Guessing (https://arxiv.org/abs/1709.00440)

⚡️An awesome list of the best Termux hacking tools

Network Intrusion Detection KDDCup '99', NSL-KDD and UNSW-NB15

A Tool for Domain Flyovers

A curated list of amazingly awesome Cybersecurity datasets

Collection of tips, tools and tutorials around infosec

A library designed to generate cryptographically strong random numbers.

C# library for the collection of browser information such as cookies, logins, and more

IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.

Malware Machine Learning

A modal passcode input and validation view controller for iOS

An Awesome List of Moroccan Cyber Security Researchers, Pentesters, Bug Hunters.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

cms识别

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

A set of high-level APIs over PointyCastle and CryptoUtils to hash and verify passwords securely.

Synchronous Readline for interactively running to have a conversation with the user via a console(TTY).

Phomber is infomation grathering tool that reverse search phone numbers and get their details, written in python3.

An analytical framework for network traffic and behavioral analytics

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

🔐 Password strength meter based on zxcvbn in vue.js

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

DotDotPwn - The Directory Traversal Fuzzer

Graphical Web interface developed to facilitate the use of security information tools.

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

Execute any command in other's computer using a trojan horse coded and compiled in C. Just for educational purpose.

Send a welcome notification to new users

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

Tools for Hacking

repo with challenge material for riceteacatpanda (2020)

Web interface to change and reset password in an LDAP directory

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A friendly car security exploration tool for the CAN bus

A MongoDB importer and API for Project Sonars DNS datasets

a very fast brute force webshell password tool

Search for Directory Traversal Vulnerabilities