891 Open source projects that are alternatives of or similar to Ssrf_vulnerable_lab

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Automated hacking tool that will find leaked databases with 97.1% accurate to grab mail + password together from recent uploads from https://pastebin.com. Bruteforce support for spotify accounts, instagram accounts, ssh servers, microsoft rdp clients and gmail accounts

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Web application vulnerability scanner

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

CMS auto detect and exploit.

💣 Impulse Denial-of-service ToolKit

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

A documentation about how to hack Minecraft servers

A Router WiFi key recovery/cracking tool with a twist.

Making Favicon.ico based Recon Great again !

Personal CTF Toolkit

🎯 PHP / ASP - Shell Backdoor List 🎯

arpspoof for macOS - intercept packets on a switched LAN

Source code for Hacker101.com - a free online web and mobile security class.

安全、可靠、简单、免费的企业级蜜罐

A list of resources for those interested in getting started in bug bounties

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A list of web application security

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python library and CLI for the Bug Bounty Recon API

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Attify OS - Distro for pentesting IoT devices

Building an Active Directory domain and hacking it

hacker, ready for more of our story ! 🚀

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Clear all your logs in [linux/windows] servers 🛡️

A collection of useful links for Pentesters

平常看到好的渗透hacking工具和多领域效率工具的集合

This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.

👻 RAT (Remote Access Trojan) - Silent Botnet - Full Remote Command-Line Access - Download & Execute Programs - Spread Virus' & Malware

Framework for building Windows malware, written in C++

3389远程桌面代码执行漏洞CVE-2019-0708批量检测工具(Rdpscan Bluekeep Check)

CTF (Capture The Flag) writeups, code snippets, notes, scripts

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

Android Kernel Exploitation

MS17-010: Python and Meterpreter

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

EOS bp nodes security checklist（EOS超级节点安全执行指南）

Writeups for infosec Capture the Flag events by team Galaxians

A collected list of awesome security talks

Everything needed for doing CTFs

Information Gathering tool for a Website or IP address

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

🎯 XML External Entity (XXE) Injection Payload List

swiss army knife for hackers

A curated list of awesome infosec courses and training resources.

AWS Serverless Security

Tool Information Gathering Write By Python.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Reversed code of GTA:SA executable (gta_sa.exe) 1.0 US

My own OSCP guide

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

Linux Heap Exploitation Practice

Medfusion 4000 security research & a MQX RCE.

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!