690 Open source projects that are alternatives of or similar to Slackor

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

Pentest: Subdomains enumeration tool for penetration testers.

The Collective. A repo for a collection of red-team projects found mostly on Github.

(l)user hunter using WinAPI calls only

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Rubyfu, where Ruby goes evil!

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

A curated list of awesome infosec courses and training resources.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Burp Suite extension to passively scan for applications revealing server error messages

Functions that can be used to gain Reverse Shells with PowerShell

Simple Karma Attack

A tool to test security of json web token

Penetration tests guide based on OWASP including test cases, resources and examples.

Collection of the cheat sheets useful for pentesting

DART is a test documentation tool created by the Lockheed Martin Red Team to document and report on penetration tests, especially in isolated network environments.

Hacker101 CTF Writeup

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Argus Advanced Remote & Local Keylogger For macOS and Windows

A tool to automate penetration tests

link is a command and control framework written in rust

Burp extension to passively scan for applications revealing software version numbers

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

🔪 Leak git repositories from misconfigured websites

A curated list of awesome OSCP resources

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

A wrapper for Nmap to quickly run network scans

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Vagrant VirtualBox environment for conducting an internal network penetration test

🔐 Docker Container for Penetration Testing & Security

Quick SQL Scanner, Dorker, Webshell injector PHP

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Multi source CVE/exploit parser.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Next generation web scanner

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

Kali Live Build Scripts

Bifrost C2. Open-source post-exploitation using Discord API

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Cheat-Sheet of tools for penetration testing

A Tool for Domain Flyovers

Multi OTP Spam Amp/Paralell threads

Yet Another PHP Shell - The most complete PHP reverse shell

Offensive Reverse Shell (Cheat Sheet)

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Hacking Toolkit

A tool for generating reverse shell payloads on the fly.

Common Web Managers Fuzz Wordlists

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Subdomain enumeration through various techniques