1012 Open source projects that are alternatives of or similar to Portia

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

WebShell Backdoor Framework

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Tools for Hacking

Automating Jenkins Hacking using Shodan API

🎯 SQL Injection Payload List

Using open Adb ports we can exploit a Andriod Device

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

🐶 A curated list of Web Security materials and resources.

DDOS Tool: To take down small websites with HTTP FLOOD. Port scanner: To know the open ports of a site. FTP Password Cracker: To hack file system of websites.. Banner Grabber: To get the service or software running on a port. (After knowing the software running google for its vulnerabilities.) Web Spider: For gathering web application hacking information. Email scraper: To get all emails related to a webpage IMDB Rating: Easy way to access the movie database. Both .exe(compressed as zip) and .py versions are available in files.

A guide for hacking unity games

Self contained htaccess shells and attacks

Collection of tips, tools and tutorials around infosec

hacking-tool termux-tools termux noob-friendly instagram-bot bruteforce-password-cracker wordlist-technique

A collection of various GitHub gists for hackers, pentesters and security researchers

溯光 (TrackRay) 3 beta⚡渗透测试框架（资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap）

Adds a customizable "Send to..."-context-menu to your BurpSuite.

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

Username enumeration and password spraying tool aimed at Microsoft O365.

GitBook: OSCP RoadMap

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

🔱 [ Phishing Made Easy ] 🔱 (In Beta)

Linux enumeration tool for pentesting and CTFs with verbosity levels

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

Your Google Recon is Now Automated

Automated Security Testing For REST API's

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

Single Page Cheatsheet for common MSF Venom One Liners

Let's find someone's account

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

BlackRAT - Java Based Remote Administrator Tool

An advanced graphical search engine for Exploit-DB

Program Uses Thread Execution Hijacking To Inject Native Shell-code Into a Standard Win32 Application

An ongoing list of virtual cybersecurity conferences.

Black Worm Offical Repo

Damn Vulnerable Web Application Docker container

记录自己编写、修改的部分工具

Detect hidden files and text in images

Remote Administration Toolkit (or Trojan) for POSiX (Linux/Unix) system working as a Web Service

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

wooyun public information backup

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

Domain name permutation engine written in Go

Script collection to bypass Network Access Control (NAC, 802.1x)

Multi-thread Twitter BruteForcer in Shell Script

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Crack password hashes without the fuss 🐈

📡 A python program to create a fake AP and sniff data.

ALL IN ONE Hacking Tool For Hackers

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

游戏外挂通用框架，快速构建外挂程序。

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

The best Hacking and PenTesting tools installer on the world

YSF Server Functions

Unpacking scripts for Ollydbg.

A documentation about how to hack Minecraft servers

🔄 A collection of mitmproxy inline scripts