2534 Open source projects that are alternatives of or similar to Pentestkit

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

OSINT Tool: Generate username lists for companies on LinkedIn

Everything needed for doing CTFs

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

The best Hacking and PenTesting tools installer on the world

OSINT

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

NetCat for Windows

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Web path scanner

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Study Notes For Web Hacking / Web安全学习笔记

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Idiomatic nmap library for go developers

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Sifter aims to be a fully loaded Op Centre for Pentesters

The New Hacking Framework

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Cameradar hacks its way into RTSP videosurveillance cameras

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Ruby on Rails Phishing Framework

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Hacking Toolkit

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Scripts I use during pentest engagements.

Next generation web scanner

my oscp prep collection

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

🔪 Leak git repositories from misconfigured websites

Vagrant VirtualBox environment for conducting an internal network penetration test

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Penetration Testing notes, resources and scripts

Free advanced and modern Windows botnet with a nice and secure PHP panel.

Automatically Launch Google Hacking Queries Against A Target Domain

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Web Application Security Scanner Framework

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Handbook of information collection for penetration testing and src

个人笔记汇总

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Tanel Poder's Troubleshooting & Performance Tools for Oracle Databases

Top 100 Hacking & Security E-Books (Free Download)

Free Security and Hacking eBooks