370 Open source projects that are alternatives of or similar to Python Books For Security

IPv6 attack toolkit

DotDotPwn - The Directory Traversal Fuzzer

Scripts I use during pentest engagements.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Hack the World using Termux

Collection of tips, tools and tutorials around infosec

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

Burp extension to passively scan for applications revealing software version numbers

Modern tactical exploitation toolkit.

🆕 The Multi-Tool Web Vulnerability Scanner.

Self contained htaccess shells and attacks

hydra

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

Gorsair hacks its way into remote docker containers that expose their APIs

Automated Penetration Testing Framework

Ruby on Rails Phishing Framework

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

USB Rubber Ducky type scripts written for the DigiSpark.

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

🐶 A curated list of Web Security materials and resources.

⚡️An awesome list of the best Termux hacking tools

Tools for Hacking

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Web path scanner

Security Tool to Look For Interesting Files in S3 Buckets

A cross-platform note-taking & target-tracking app for penetration testers.

A default credential scanner.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Hacking Toolkit

A Python-powered exploitation framework and botnet.

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Burp Suite extension to passively scan for applications revealing server error messages

A web front-end for password cracking and analytics

A curated list of awesome OSCP resources

Infection Monkey - An automated pentest tool

An HTTP/HTTPS intercept proxy written in Go.

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Directory Services Internals (DSInternals) PowerShell Module and Framework

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

A portable console aimed at making pentesting with PowerShell a little easier.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Simple Karma Attack

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

Discover Your Attack Surface!

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!