285 Open source projects that are alternatives of or similar to sedoppkit

MQTT-PWN intends to be a one-stop-shop for IoT Broker penetration-testing and security assessment operations.

The Offensive Manual Web Application Penetration Testing Framework.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Web Recon & Exploitation Tool.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Related subdomains finder

Lightweight utility to fool port scanners

Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

🔎 Find usernames and download their data across social media.

Exam Prep for the Ec-council Certified Ethical Hacker 312-50

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Exploiting challenges in Linux and Windows

Pure C++, weaponized, fully automated implementation of RottenPotatoNG

Arm Episodes

Advanced Reconnaissance tool to enumerate attacking surface of the target.

This script will automatically set up an OSINT workstation starting from a Ubuntu OS.

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

A website for interacting with kahoot games.

整理一些内网常用渗透小工具

Unique wordlist generator of unique wordlists.

Tool to automate recon

Binary Exploitation and Reverse-Engineering (from assembly into C)

Android application fuzzing framework with fuzzers and crash monitor.

📝 urlRecon - Info Gathering or Recon tool for Urls -> Retrieves * Whois information of the domain * DNS Details of the domain * Server Fingerprint * IP geolocation of the server

Basic tool to automate backdooring PE files

A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.

Python Powered Repository

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

One stop place for exploiting Jira instances in your proximity

💀 A bash hacking and scanning framework.

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

Pentest: Subdomains enumeration tool for penetration testers.

Automated Web Recon Shell Scripts

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

This Buffer Overflow Toolkit works through FTP, SMTP, POP, HTTP protocols as well file outputs for playlists exploiting customized variables/commands. Payloads can be generated through MSFVENOM or you can use your own ASM files.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

apkizer is a mass downloader for android applications for all available versions.

Hourly updated database of exploit and exploitation reports

Exploiting Linksys WRT54G using a vulnerability I found.

Borrowed Instructions Synthetic Computation

Some of my public exploits

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Go scripts for finding sensitive data like API key / some keywords in the github repository

REST API backend for Reconmap

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

Data Visualization Plugin for IDA Pro

This repository contains the tools we used in our research on the Google Titan M chip

Tool to help exploit XXE vulnerabilities

A set of tutorials about code injection for Windows.

Bluefrost Exploitation Challenge 2019 - Exploit and Writeup

Attempts to determine the configuration, behavior, and type of a remote MQTT broker

Automated All-in-One OS Command Injection Exploitation Tool.

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

🐺 Command-line application and golang client library for hunter.io