1266 Open source projects that are alternatives of or similar to Powerladon

Compromising the macOS Kernel through Safari by Chaining Six Vulnerabilities

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

Personal CTF Toolkit

📟Binary Hacking Course

Client not paid ? This is the solution of your problem

POC for my Medium article

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

A collected list of awesome security talks

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

Everything needed for doing CTFs

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

OSINT Tool: Generate username lists for companies on LinkedIn

🎯 XML External Entity (XXE) Injection Payload List

The New Hacking Framework

AWS Serverless Security

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Reversed code of GTA:SA executable (gta_sa.exe) 1.0 US

👻Stowaway -- Multi-hop Proxy Tool for pentesters

cobaltstrike ms17-010 module and some other

An exploit for Apache Struts CVE-2018-11776

WeirdAAL (AWS Attack Library)

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Search for Directory Traversal Vulnerabilities

A Anti-DDoS script to protect Nginx web servers using Lua with a HTML Javascript based authentication puzzle inspired by Cloudflare I am under attack mode an Anti-DDoS authentication page protect yourself from every attack type All Layer 7 Attacks Mitigating Historic Attacks DoS DoS Implications DDoS All Brute Force Attacks Zero day exploits Social Engineering Rainbow Tables Password Cracking Tools Password Lists Dictionary Attacks Time Delay Any Hosting Provider Any CMS or Custom Website Unlimited Attempt Frequency Search Attacks HTTP Basic Authentication HTTP Digest Authentication HTML Form Based Authentication Mask Attacks Rule-Based Search Attacks Combinator Attacks Botnet Attacks Unauthorized IPs IP Whitelisting Bruter THC Hydra John the Ripper Brutus Ophcrack unauthorized logins Injection Broken Authentication and Session Management Sensitive Data Exposure XML External Entities (XXE) Broken Access Control Security Misconfiguration Cross-Site Scripting (XSS) Insecure Deserialization Using Components with Known Vulnerabilities Insufficient Logging & Monitoring Drupal WordPress Joomla Flash Magento PHP Plone WHMCS Atlassian Products malicious traffic Adult video script avs KVS Kernel Video Sharing Clip Bucket Tube sites Content Management Systems Social networks scripts backends proxy proxies PHP Python Porn sites xxx adult gaming networks servers sites forums vbulletin phpbb mybb smf simple machines forum xenforo web hosting video streaming buffering ldap upstream downstream download upload rtmp vod video over dl hls dash hds mss livestream drm mp4 mp3 swf css js html php python sex m3u zip rar archive compressed mitigation code source sourcecode chan 4chan 4chan.org 8chan.net 8ch 8ch.net infinite chan 8kun 8kun.net anonymous anon tor services .onion torproject.org nginx.org nginx.com openresty.org darknet dark net deepweb deep web darkweb dark web mirror vpn reddit reddit.com adobe flash hackthissite.org dreamhack hack hacked hacking hacker hackers hackerz hackz hacks code coding script scripting scripter source leaks leaked leaking cve vulnerability great firewall china america japan russia .gov government http1 http2 http3 quic q3 litespeedtech litespeed apache torrents torrent torrenting webtorrent bittorrent bitorrent bit-torrent cyberlocker cyberlockers cyber locker cyberbunker warez keygen key generator free irc internet relay chat peer-to-peer p2p cryptocurrency crypto bitcoin miner browser xmr monero coinhive coin hive coin-hive litecoin ethereum cpu cycles popads pop-ads advert advertisement networks banner ads protect ovh blazingfast.io amazon steampowered valve store.steampowered.com steamcommunity thepiratebay lulzsec antisec xhamster pornhub porn.com pornhub.com xhamster.com xvideos xvdideos.com xnxx xnxx.com popads popcash cpm ppc

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

CMS auto detect and exploit.

做redteam时使用，修改自Ridter的https://github.com/Ridter/Intranet_Penetration_Tips

记录自己编写、修改的部分工具

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目

A (partial) Python rewriting of PowerSploit's PowerView

Apache Tomcat auto WAR deployment & pwning penetration testing tool.

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

a plenty of poc based on python

all mine papers, pwn & exploit

Tools, tips, tricks, and more for exploring ICS Security.

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

A REST API security testing framework.

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

🎯 PHP / ASP - Shell Backdoor List 🎯

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Kali Linux Cheat Sheet for Penetration Testers

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

Jam all wifi clients/routers.

Framework to test any Anti-Cheat

POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞， 对功能进行强化以及脚本进行分类添加，自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)

Fully chained kernel exploit for the PS Vita on firmwares 3.65-3.68

CatchME - WiFi Fun Box "Having Fun with ESP8266"

Mengobati rasa ingin tahu atau kadang hanya iseng