1266 Open source projects that are alternatives of or similar to Powerladon

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

parse nmap files

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Find exploit tool

A personalized/enhanced re-creation of the Darkhotel "Double Star" APT exploit chain with a focus on Windows 8.1 and mixed with some of my own techniques

EOS bp nodes security checklist（EOS超级节点安全执行指南）

Documentation, configuration, reference material and other information around an Asterisk-based VNF

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

Task Hijacking in Android (somebody call it also StrandHogg vulnerability)

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Proxy token to allow mitigating EOSIO Ram exploit

Advanced Web Shell

🔑 ftpknocker is a multi-threaded scanner for finding anonymous FTP servers

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

Enumeration sub domains(枚举子域名)

Quick SQLMap Tamper Suggester

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

Fast website scraper and wordlist generator

CTF (Capture The Flag) writeups, code snippets, notes, scripts

kernel-pwn and writeup collection

OpenSSH remote DOS exploit and vulnerable container

A collection of useful Python hacking scripts for beginners

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Search gtfobins and lolbas files from your terminal

💣 Impulse Denial-of-service ToolKit

Real world and CTFs exploiting web/binary POCs.

A remote administration tool for Windows, written in C#

Writeups for infosec Capture the Flag events by team Galaxians

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

🐳 Full-fledged Android SDK Docker Image

BloodHound Docker Ready to Use

A curated list of awesome infosec courses and training resources.

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Automatically brute force all services running on a target.

👥😈 Infect a pc with badusb and establish a connection through telegram.

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

HULK DoS tool ported to Go with some additional features.

Scheme flooding vulnerability: how it works and why it is a threat to anonymous browsing

Exploit PollDaddy polls

An interactive multi-user web JS shell

XSS HTTP Inject0r is a proof of concept tool that shows how XSS (Cross Site Scripting) flags can be exploited easily. It is written in HTML + Javascript + PHP and released under GPLv3.

Turn your VPS into an attack box

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

SQL Injection Payload List

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

This is a list of Discord console scripts, bugs and exploits.

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

DeepfakeHTTP is a web server that uses HTTP dumps as a source for responses.