1277 Open source projects that are alternatives of or similar to Ssh Mitm

A collection of hacking / penetration testing resources to make you better!

DEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

OSINT Tool: Generate username lists for companies on LinkedIn

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🎁 Pokemon Go MITM Proxy - Intercepts the traffic between your Pokemon Go app and their servers, decodes the protocol and gives you a handy tool to enrich your own game experience on the fly.

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Framework for Man-In-The-Middle attacks

Android Apps, Roms and Platforms for Pentesting

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

A list of web application security

🔪 Leak git repositories from misconfigured websites

Useful tools and scripts during Penetration Testing engagements

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Idiomatic nmap library for go developers

Ruby on Rails Phishing Framework

IPv6 attack toolkit

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

An HTTP/HTTPS intercept proxy written in Go.

WSSH Is a tool for brute forcing servers that has port 22 open via ssh, wssh is probably the fastest ssh brute forcer available

⚡⚡⚡Fast, Lightweight, Pluggable, TLS interception capable proxy server focused on Network monitoring, controls & Application development, testing, debugging

Everything needed for doing CTFs

Tool Information Gathering Write By Python.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

network reconnaissance toolkit

ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Hacker101 CTF Writeup

Penetration Testing notes, resources and scripts

HostHunter a recon tool for discovering hostnames using OSINT techniques.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

The New Hacking Framework

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Hacking Toolkit

Web path scanner

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, instagram accounts, ssh servers, microsoft rdp clients and gmail accounts

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

pentest framework

🤖 A CLI application that automatically prepares Android APK files for HTTPS inspection

ssh management tool to provides commandline access to a remote system running SSH server

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Next generation web scanner

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Scripts I use during pentest engagements.