1363 Open source projects that are alternatives of or similar to Punk.py

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

The LAZY script will make your life easier, and of course faster.

A collection of resources I'm using while working toward the OSCP

Domain name permutation engine written in Go

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Exploits and Security Tools Framework 2.0.1

Work in progress...

Automatic privilege escalation for misconfigured capabilities, sudo and suid binaries

An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

A high performance offensive security tool for reconnaissance and vulnerability scanning

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Penetration test Achieve Knowledge Unite Rapid Interface

Pentesting suite for Maltego based on data in a Metasploit database

A wrapper for Nmap to quickly run network scans

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Post-Exploitation Framework

Quick SQL Scanner, Dorker, Webshell injector PHP

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A curated list of awesome OSCP resources

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Penetration Testing Platform

Collection of resources for my preparation to take the OSEE certification.

a collection of small and standalone utilities for image processing, written in C

🐙 simple ssh manager based on bash/zsh history

git-based zone management tool for static and dynamic domains

VOIP Security Audit Framework

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

SSH connection daemon for Debian/Raspbian/Ubuntu/etc

color extraction to turn images into 16 color palettes

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Collaborative Visualization and Simulation Environment, OpenCOVER and OddLOT

IAP Desktop is a Windows application that provides zero-trust Remote Desktop and SSH access to Linux and Windows VMs on Google Cloud.

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

read notifications from stdin and pop them up on the screen

A simple ssh wrapper to execute commands into many hosts.

🔪 Leak git repositories from misconfigured websites

A collection of public offensive and defensive security related scripts for InfoSec students.

a (simple) dockerized ssh tunnel

⚡️ A dev tool for microservice developers to run local applications and/or forward others from/to Kubernetes SSH or TCP

[DEPRECATED] Windows shell provisioning script to bootstrap Ansible from within a Vagrant VM.

Powershell script to setup windows port forwarding using native netsh client

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

dnsub一款好用的子域名扫描工具

As beautiful as a shell

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

An advanced graphical search engine for Exploit-DB

A parallel SSH-based remote machine management system

Venom - A Multi-hop Proxy for Penetration Testers

Purely functional SSH library in ocaml.

SSH automation tool based on Groovy DSL

A collection of manifests that will create pods with elevated privileges.

SSH workflow for Alfred for Mac with powerful hostname expansion/completion

Detect hidden files and text in images