2526 Open source projects that are alternatives of or similar to Pentesting Bible

👻Impost3r -- A linux password thief

My own OSCP guide

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

A Python Tool For google Hacking

Ghost Framework is an Android post-exploitation framework that exploits the Android Debug Bridge to remotely access an Android device. Ghost Framework gives you the power and convenience of remote Android device administration.

Log any method call of object in Objective-C

Chromepass - Hacking Chrome Saved Passwords

HOSTS file and research project to block all known NSA / GCHQ / C.I.A. / F.B.I. spying server

Pentesting tool for Minecraft

Providing aid in converting video games.

Web application vulnerability scanner

Python 3.5+ DNS asynchronous brute force utility

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Search Google and download specific file types

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Captive wifi hotspot bypass tool for Linux

Patch iOS Apps, The Easy Way, Without Jailbreak.

Give a Mask to Phishing URL like a PRO.. A MUST have tool for Phishing.

Just Another Repo

Java-layer Android Malware Simplifier

Python AV Evasion Tools

A Powerful Subdomain Takeover Tool

Nmap and NSE command line wrapper in the style of Metasploit

Information Gathering Instagram.

Android virtual machine and deobfuscator

Automatic SQL injection and database takeover tool

Keylogger for mac written in Swift using HID

Nuubi Tools (Information-ghatering|Scanner|Recon.)

DRAKVUF Sandbox - automated hypervisor-level malware analysis system

Domain availbility checker

bingip2hosts is a Bing.com web scraper that discovers websites by IP address

Collecting IOCs posted on Twitter

Debian packaging of Linux Malware Detect (https://github.com/rfxn/linux-malware-detect)

Droidefense: Advance Android Malware Analysis Framework

Malware Machine Learning

DaProfiler allows you to create a profile on your target based in France only. The particularity of this program is its ability to find the e-mail addresses your target.

Community modules for FAME

Malware sample library.

🤖 The Modern Port Scanner 🤖

A OSINT tool to obtain a target's phone number just by having his email address

A Linux packet crafting tool.

SSMA - Simple Static Malware Analyzer [This project is not maintained anymore by me]

Unofficial Command Line Interface for OpenCorporates

Botnet targeting Windows machines written entirely in Python & open source security project.

A Python-powered exploitation framework and botnet.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

Just another script for automatize boolean-based blind SQL injections. (Demo)

👨🏻‍💻 A great tool for Ethical Hackers, a malware programmed with Backdoor and Keylogger.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

A pattern based Dalvik deobfuscator which uses limited execution to improve semantic analysis

Idiomatic nmap library for go developers

ParadoxiaRat : Native Windows Remote access Tool.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Sifter aims to be a fully loaded Op Centre for Pentesters

Track any ip address with IP-Tracer. IP-Tracer is developed for Linux and Termux. you can retrieve any ip address information using IP-Tracer.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

FCL (Fileless Command Lines) - Known command lines of fileless malicious executions

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.