855 Open source projects that are alternatives of or similar to Reconcat

Browse and search through nmap's NSE scripts.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Information gathering tool - OSINT

Empire HTTP(S) C2 redirector setup script

Awesome cloud enumerator

⚡️An awesome list of the best Termux hacking tools

A Modular Penetration Testing Framework

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Selenium powered Python script to automate searching for vulnerable web apps.

The iOS Security Testing Framework

A tool to find redirection chains in multiple URLs

Port scanning and domain utility.

A Hashcat wrapper for distributed hashcracking

A swiss army knife for pentesting networks

A python tool to check subdomain takeover vulnerability

A portable console aimed at making pentesting with PowerShell a little easier.

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

shuffleDNS is a wrapper around massdns written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.

Linux Rootkits (4.x Kernel)

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

A fully automatic wifi deauther coded in Python

Notes for taking the OSCP in 2097. Read in book form on GitBook

fireELF - Fileless Linux Malware Framework

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Automatically Launch Google Hacking Queries Against A Target Domain

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

A Docker container for remote penetration testing.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Quick utility to craft executables for pentesting and managing reverse shells

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Find web directories without bruteforce

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A Tool for Domain Flyovers

A web application for generating custom XSS payloads

Intelligence tool but without API key

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Web App Pen Tester (Web Interface)

All about bug bounty (bypasses, payloads, and etc)

A framework for Backdoor development!

My OSCP journey

DNS Rebinding Exploitation Framework

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Post-Exploitation Framework

Oracle Database Penetration Testing Reference (10g/11g)

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Hashtopolis - A Hashcat wrapper for distributed hashcracking

DNS Sub-domain brute forcer, in Python + gevent

Quickly analyze and reverse engineer Android packages

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Pentest Report Generator

无状态子域名爆破工具

被动式漏洞扫描系统

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)