1440 Open source projects that are alternatives of or similar to Pwn_jenkins

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

This repository contains several applications, demonstrating the Meltdown bug.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

OSINT Swiss Army Knife

Redis(<=5.0.5) RCE

🌸 Interactive shellcoding environment to easily craft shellcodes

Self contained htaccess shells and attacks

Automate Pentest Tool

A fully featured Windows backdoor that uses Gmail as a C&C server

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

EOS bp nodes security checklist（EOS超级节点安全执行指南）

Framework to test any Anti-Cheat

Docker image for a Jenkins agent which can connect to Jenkins using TCP or Websocket protocols

Windows driver with usermode interface which can hide objects of file-system and registry, protect processes and etc

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.

开源运维平台：面向中小型企业设计的轻量级无Agent的自动化运维平台，整合了主机管理、主机批量执行、主机在线终端、文件在线上传下载、应用发布部署、在线任务计划、配置中心、监控、报警等一系列功能。

CTF (Capture The Flag) writeups, code snippets, notes, scripts

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Vulnerability Dashboard

Search gtfobins and lolbas files from your terminal

Drone pentesting framework console

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

OWASP Joomla Vulnerability Scanner Project

Information Gathering tool for a Website or IP address

暴走皮皮虾之代码发布系统,是现代的持续集成发布系统,由后台管理系统和agent两部分组成,一个运行着的agent就是一个节点,本系统并不是造轮子,是"鸟枪"到"大炮"的创新,对"前朝遗老"的革命.

TESLA PowerWall 2 Security Shenanigans

ParadoxiaRat : Native Windows Remote access Tool.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

Defeating Patchguard universally for Windows 8, Windows 8.1 and all versions of Windows 10 regardless of HVCI

Jenkins automation server

Attack surface mapping

A collection of various GitHub gists for hackers, pentesters and security researchers

Advanced Web Shell

Various kernel exploits

👻 A LAN dropbox chatbot controllable via Telegram

Yet another implementation of AEG (Automated Exploit Generation) using symbolic execution engine Triton.

A tool to automate penetration tests

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

Extract subdomains from SSL certificates in HTTPS sites.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Top disclosed reports from HackerOne

SS7 MAP (pen-)testing toolkit. DISCONTINUED REPO, please use: https://github.com/0xc0decafe/ss7MAPer/

Framework for building Windows malware, written in C++

Meltdown Exploit / Proof-of-concept / checks whether system is affected by Variant 3: rogue data cache load (CVE-2017-5754), a.k.a MELTDOWN.

用于记录内网渗透(域渗透)学习 :-)

Azure DevOps Utilities

Our super sweet hacker management system, built for HackTCNJ 2017+ | Used by [email protected] 2018!

运维管理平台(阿里云)，自动同步阿里云配置信息，堡垒机（容器），批量运维，Kubernetes，Zabbix管理等功能

渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker

Kindle 5.6.5 exploitation tools.

Bypassing disabled exec functions in PHP (c) CRLF

C2/post-exploitation framework

A Golang implant that uses Slack as a command and control server

Jenkins X provides automated CI+CD for Kubernetes with Preview Environments on Pull Requests using Cloud Native pipelines from Tekton

💣 Impulse Denial-of-service ToolKit