1382 Open source projects that are alternatives of or similar to Payloads

Have fun injecting SQL into a Ruby on Rails application!

👨‍🏫 Mike's Web Security Course

Harden the world is a community driven project to develop hardening guidelines and checklists for common software and devices.

Automated Tactics Techniques & Procedures

OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development

🔓 A dynamic dictionary merger for successful dictionary based attacks.

macOS FileVault cracking tool

A tool to check a bunch of URLs that contain reflecting params.

备考 OSCP 的各种干货资料/渗透测试干货资料

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

Monitoring your Slack workspaces for sensitive information

A time lapse app for Sony Alpha camera using the OpenMemories framework

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Auto IP or Domain Attack Tool ( #1 )

Linux enumeration tool for pentesting and CTFs with verbosity levels

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

💤 Kick devices off your network by performing an ARP Spoof attack.

Firefox's Lockwise app for iOS

Cloudlist is a tool for listing Assets from multiple Cloud Providers.

The ONLY hacker friendly proxy for webapp pentests.

An open source batch script based WiFi Passview for Windows!

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.

Unpacking scripts for Ollydbg.

🔒 Password Exposed Helper Function - Check if a password has been exposed in a data breach.

Fawkes is a tool to search for targets vulnerable to SQL Injection. Performs the search using Google search engine.

💔 Archived list of domains using Cloudflare DNS at the time of the CloudBleed announcement.

The bot for the Cyber Discovery Community Discord Server!

Shaming sites with dumb password rules.

A bot that will allow you to destroy discord servers.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Prodigy Hacking Organization: Hacking for the right reasons. | Questions? Ask on our Discord. https://discord.gg/XQDfbfq

facebook hacking toolkit

A collection of various awesome lists for hackers, pentesters and security researchers

A command-line tool for querying the 'Have I been pwned?' service.

Translator from USB-Rubber-Ducky payloads to a Digispark code.

OWASP Honeypot, Automated Deception Framework.

Pwning the Nuro issued Huawei HG8045Q

A backdoor with a multitude of features.

Linset is a WPA/WPA2 phishing tool (evil twin)

This repository contains reference material & links for people willing to learn Ethical Hacking

An easy, fast lib to correctly password-protect your data

Bot18 is a high-frequency cryptocurrency trading bot developed by Zenbot creator @carlos8f

easy-to-use payload hosting

🔒 Laravel validation rules that follow the password related recommendations found in NIST Special Publication 800-63B section 5.

Automated brute-forcing attack tool.

Steganograpy in Python | Hide files or data in Image Files

Facebook Brute Forcer in shellscript using TOR

Go-deliver is a payload delivery tool coded in Go.

web scanner - exploitation - information gathering

This is an advanced script for Instagram bruteforce attacks. WARNING THIS IS A REAL TOOL!

Rockyou for web fuzzing

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

The Simplistic Information Gathering Engine | Find Advanced Information on a Username, Website, Phone Number, etc.

Repositório com conteúdo sobre web hacking em português

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

Tangalanga: the Zoom conference scanner hacking tool

Rubyfu, where Ruby goes evil!

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.