1277 Open source projects that are alternatives of or similar to Ssh Mitm

unix SSH post-exploitation 1337 tool

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

my oscp prep collection

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A collection of various awesome lists for hackers, pentesters and security researchers

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Infection vector that bypasses AV, IDS, and IPS. (For now...)

A collection of personal scripts used in hacking excercises.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Don't let buffer overflows overflow your mind

Study Notes For Web Hacking / Web安全学习笔记

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely useful for a forensics team to extract timestamps after an attack on a host to collect evidences and perform further analysis.

HydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing

Advanced and easy to use penetration testing framework 💣🔎

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

ANDRAX The first and unique Penetration Testing platform for Android smartphones

ssh management tool to provides commandline access to a remote system running SSH server

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

安全、可靠、简单、免费的企业级蜜罐

Vagrant VirtualBox environment for conducting an internal network penetration test

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

BruteDum - Brute Force attacks SSH, FTP, Telnet, PostgreSQL, RDP, VNC with Hydra, Medusa and Ncrack

Statically-linked ssh server with reverse shell functionality for CTFs and such

ESP8266 based WiFi implant to remotely track the presence of certain people or devices via a simple web interface

Top 100 Hacking & Security E-Books (Free Download)

Hacking Toolkit

Hacker101 CTF Writeup

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Next generation web scanner

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Android Apps, Roms and Platforms for Pentesting

network reconnaissance toolkit

Fully automated offensive security framework for reconnaissance and vulnerability scanning

HostHunter a recon tool for discovering hostnames using OSINT techniques.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Idiomatic nmap library for go developers

The New Hacking Framework

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

WSSH Is a tool for brute forcing servers that has port 22 open via ssh, wssh is probably the fastest ssh brute forcer available

Ruby on Rails Phishing Framework

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Free Security and Hacking eBooks

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Scripts I use during pentest engagements.

An HTTP/HTTPS intercept proxy written in Go.

pentest framework

Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor

🐙 simple ssh manager based on bash/zsh history

🎬 A curated list of movies every hacker & cyberpunk must watch.

The ansible playbook to improve the security of your SSH

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

FAQ del mundo de la seguridad informática en español.