656 Open source projects that are alternatives of or similar to pyhtools

JSON RSA to HMAC and None Algorithm Vulnerability POC

This script will you help to find the information about the website and to help in penetrating testing

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

Captive wifi hotspot bypass tool for Linux

Install the tools and start Attacking , black-tool v5.0 ! ⬛

A Tool for Domain Flyovers

HostHunter a recon tool for discovering hostnames using OSINT techniques.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow

cms识别

PENIOT: Penetration Testing Tool for IoT

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

A list of web application security

Web path scanner

Command line tool that allows you to explore IoT devices by using Shodan API.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Awesome hacking is an awesome collection of hacking tools.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Social media hunter

WordPress pentest tool

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Collection of several DDos tools.

Cameradar hacks its way into RTSP videosurveillance cameras

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Hacking arsenal. This script download the latest tools, wordlists, releases and install common hacking tools

It's a Docker Environment for pentesting which having all the required tool for VAPT.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Next generation web scanner

Fully automated offensive security framework for reconnaissance and vulnerability scanning

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

Attack Surface Management Platform | Sn1perSecurity LLC

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Boxer: A fast directory bruteforce tool written in Python with concurrency.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A Python-powered exploitation framework and botnet.

Automated NoSQL database enumeration and web application exploitation tool.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

phishEye is an ultimate phishing tool in python. Includes popular websites like Facebook, Twitter, Instagram, LinkedIn, GitHub, Dropbox, and many others. Created with Flask, custom templates, and tunneled with ngrok and localhost.run.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

Undetectable & Xor encrypting with custom KEY (FUD Metasploit Rat) bypass Top Antivirus like BitDefender,Malwarebytes,Avast,ESET-NOD32,AVG,... & Automatically Add ICON and MANIFEST to excitable

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.