285 Open source projects that are alternatives of or similar to sedoppkit

A WebKit exploit using CVE-2018-4441 to obtain RCE on PS4 6.20.

Basic tool to automate backdooring PE files

A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.

A WIP "Vulnerable by Design" kext for iOS/macOS to play & learn *OS kernel exploitation

Python Powered Repository

fully automated pentesting tool

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

One stop place for exploiting Jira instances in your proximity

fsociety Hacking Tools Pack – A Penetration Testing Framework

Exploitation Framework for ATtiny85 Based HID Attacks

💀 A bash hacking and scanning framework.

🔐 Run frida-server on boot with Magisk, always up-to-date

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

File upload vulnerability scanner and exploitation tool.

Pentest: Subdomains enumeration tool for penetration testers.

Blazefox exploits for Windows 10 RS5 64-bit.

Automated Web Recon Shell Scripts

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

Penetration test Achieve Knowledge Unite Rapid Interface

This Buffer Overflow Toolkit works through FTP, SMTP, POP, HTTP protocols as well file outputs for playlists exploiting customized variables/commands. Payloads can be generated through MSFVENOM or you can use your own ASM files.

How to prepare for OSCP complete guide

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

apkizer is a mass downloader for android applications for all available versions.

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Hourly updated database of exploit and exploitation reports

Automatic SSRF fuzzer and exploitation tool

Exploiting Linksys WRT54G using a vulnerability I found.

Tools for Bug Hunting

Borrowed Instructions Synthetic Computation

Automation for internal Windows Penetrationtest / AD-Security

Some of my public exploits

🐺 Command-line application and golang client library for hunter.io

Linux and Windows shellcode enrichment utility

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Reverse-engineering tools and exploits for Samsung's implementation of TrustZone

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper uses the awesome Capstone Framework.

Go scripts for finding sensitive data like API key / some keywords in the github repository

Exploitation and Mitigation Slides

REST API backend for Reconmap

Security Evaluation of Dynamic Binary Instrumentation Engines

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

📚 VoidHack CTF write-ups

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

Exploit code for CVE-2016-9066

Data Visualization Plugin for IDA Pro

Remote exploitation framework written in Python

This repository contains the tools we used in our research on the Google Titan M chip

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A set of tutorials about code injection for Windows.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Bluefrost Exploitation Challenge 2019 - Exploit and Writeup

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

mirror of gera's insecure programming examples | http://community.coresecurity.com/~gera/InsecureProgramming/

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

About All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers