831 Open source projects that are alternatives of or similar to Socialfish

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Intelligence and Reconnaissance Package/Bundle installer.

hydra

Passwords Recovery Tool

Fast Modular Web Interfaces Bruteforcer

Extract subdomains from SSL certificates in HTTPS sites.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Penetration Testing notes, resources and scripts

CVE-2016-8610 (SSL Death Alert) PoC

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Selenium powered Python script to automate searching for vulnerable web apps.

The ultimate WinRM shell for hacking/pentesting

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

A fast DOM based XSS vulnerability scanner with simplicity.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

A curated list of awesome privilege escalation

Quickly analyze and reverse engineer Android packages

🔐 Docker Container for Penetration Testing & Security

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A curated list of awesome OSCP resources

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A Cloudflare resolver that works

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

Next generation web scanner

A pentesting tool inspired by mr robot and derived by zphisher

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

A tool to automate penetration tests

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Sifter aims to be a fully loaded Op Centre for Pentesters

Open Redirect Payloads

Automatically Launch Google Hacking Queries Against A Target Domain

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Hacking Toolkit

Yet Another PHP Shell - The most complete PHP reverse shell

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Generate unicode evil domains for IDN Homograph Attack and detect them.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

pentest framework

DeepSea Phishing Gear

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

SSRF (Server Side Request Forgery) testing resources

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A tool to test security of json web token

Set of tools to audit SIP based VoIP Systems

This is my OSCP cheat sheet made by combining a lot of different resources online with a little bit of tweaking. I used this cheat sheet during my exam (Fri, 13 Sep 2019) and during the labs. I can proudly say it helped me pass so I hope it can help you as well ! Good Luck and Try Harder

📱 🐟 An app to remote control SocialFish.

Ruby on Rails Phishing Framework

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

A wrapper for Nmap to quickly run network scans

A Phishing Dropper designed to Pentest.