434 Open source projects that are alternatives of or similar to Ridrelay

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Docker image for Osmedeus, a fully automated offensive security tool for reconnaissance and vulnerability scanning

Next generation web scanner

This is a multi-use bash script for Linux systems to audit wireless networks.

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Easy files and payloads delivery over DNS

This repository contains full code examples from the book Gray Hat C#

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

HTML5 based remote desktop gateway using Apache Guacamole and Traefik Reverse Proxy including AD authentication and 2-FA

A REST API security testing framework.

Extract subdomains from SSL certificates in HTTPS sites.

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

Awesome cloud enumerator

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

Selenium powered Python script to automate searching for vulnerable web apps.

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))

Web Pentesting Fuzz 字典,一个就够了。

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

👻 A LAN dropbox chatbot controllable via Telegram

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

A fully automatic wifi deauther coded in Python

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

A bash script for recon and DOS attacks

A tool to automate penetration tests

tcp connection hijacker, rust rewrite of shijack

Tactics, Techniques, and Procedures

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

swiss army knife for hackers

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

Collection of pentesting scripts

locate and attack Lync/Skype for Business

A fast DOM based XSS vulnerability scanner with simplicity.

Hundreds of Offensive and Useful Docker Images for Network Intrusion. The name says it all.

👻Impost3r -- A linux password thief

Port scanning and domain utility.

Hetty is an HTTP toolkit for security research.

This repo will contain some basic pentest/RT commands.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A python tool to check subdomain takeover vulnerability

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Linux Rootkits (4.x Kernel)

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

PowerShell SOCKS proxy with reverse proxy capabilities

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

A pentesting tool inspired by mr robot and derived by zphisher

THE ESP8266 HONEYPOT

My own OSCP guide

Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

OSINT