561 Open source projects that are alternatives of or similar to Poc T

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

File upload vulnerability scanner and exploitation tool.

Automated All-in-One OS Command Injection Exploitation Tool.

Sifter aims to be a fully loaded Op Centre for Pentesters

Automatic SQL injection and database takeover tool

Notes for taking the OSCP in 2097. Read in book form on GitBook

Exploit Pack -The next generation exploit framework

fireELF - Fileless Linux Malware Framework

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

mXtract - Memory Extractor & Analyzer

Linux and Windows shellcode enrichment utility

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

CMS auto detect and exploit.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

A high performance offensive security tool for reconnaissance and vulnerability scanning

fully automated pentesting tool

A python tool to check subdomain takeover vulnerability

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Responsive Command and Control System

Automation for internal Windows Penetrationtest / AD-Security

SSRF (Server Side Request Forgery) testing resources

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

Elasticsearch for Offensive Security

A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

EmbedOS - Embedded security testing virtual machine

How to prepare for OSCP complete guide

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

A collection of awesome videos, articles, books and resources about ARM exploitation.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

my oscp prep collection

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

A tool to abuse Exchange services

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Penetration test Achieve Knowledge Unite Rapid Interface

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Ransom0 is a open source ransomware made with Python, designed to find and encrypt user data.

Go-deliver is a payload delivery tool coded in Go.

Set of tools to audit SIP based VoIP Systems

small python3 tool to check common vulnerabilities in SMTP servers

A simple dns resolver of dns-record and web-record log server for pentesting

A collection of useful scripts for Cobalt Strike

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.

A collection of public offensive and defensive security related scripts for InfoSec students.

A PHP dependency vulnerabilities scanner based on the Security Advisories Database.

A container repository for my public web hacks!

Collection of resources for my preparation to take the OSEE certification.

用cel-go重现了长亭xray的poc检测功能的轮子