1299 Open source projects that are alternatives of or similar to Sublert

DEPRECATED, wifipumpkin3 -> https://github.com/P0cL4bs/wifipumpkin3

A web front-end for password cracking and analytics

An Python Script For Generating Payloads that Bypasses All Antivirus so far .

PowerShell Runspace Portable Post Exploitation Tool aimed at making Penetration Testing with PowerShell "easier"

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

CyberScan: Network's Forensics ToolKit

Tool for port forwarding & intranet proxy

An automated target reconnaissance pipeline.

个人笔记汇总

HERCULES is a special payload generator that can bypass antivirus softwares.

An Integrated Experimental Platform for time series data anomaly detection.

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

Extract endpoints from APK files

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

Tool to generate smart and powerful wordlists

Proves JVM cheats are viable on native games, and demonstrates the longevity against anti-cheat signature detection systems

Auto Scanning to SSL Vulnerability

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

This repository created for personal use and added tools from my latest blog post.

Track any ip address with IP-Tracer. IP-Tracer is developed for Linux and Termux. you can retrieve any ip address information using IP-Tracer.

Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

windows-kernel-exploits Windows平台提权漏洞集合

This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010

OSINT Swiss Army Knife

A fully featured Windows backdoor that uses Gmail as a C&C server

ATT&CK实操

☎️ Original open source call flooder using Twilio's API.

👁 (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued]

TESLA PowerWall 2 Security Shenanigans

SIP-Based Audit and Attack Tool

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

ParadoxiaRat : Native Windows Remote access Tool.

Awesome cloud enumerator

A portable, simple zip library written in C

linux-kernel-exploits Linux平台提权漏洞集合

😈 Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!

Quine Museum

Steganography brute-force utility to uncover hidden data inside files

Declarative penetration testing orchestration framework

A Modular Penetration Testing Framework

📝 ⌨️ A GNU/Linux keylogger that works!

The SpecterOps project management and reporting engine

Mercure is a tool for security managers who want to train their colleague to phishing.

SS7 MAP (pen-)testing toolkit. DISCONTINUED REPO, please use: https://github.com/0xc0decafe/ss7MAPer/

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

IPv6 attack toolkit

Overlord - Red Teaming Infrastructure Automation

🎯 Advanced debugging skills used in the iOS project development process, involves the dynamic debugging, static analysis and decompile of third-party libraries. iOS 项目开发过程中用到的高级调试技巧，涉及三方库动态调试、静态分析和反编译等领域

Open Source Information Facebook

用于记录内网渗透(域渗透)学习 :-)

locate and attack Lync/Skype for Business

(deprecated) Android application vulnerability analysis and Android pentest tool

渗透测试人员专用精简化字典 Dictionary for penetration testers happy hacker

Selenium powered Python script to automate searching for vulnerable web apps.

Pentest/BugBounty progress control with scanning modules

⚡️An awesome list of the best Termux hacking tools