1013 Open source projects that are alternatives of or similar to Sudo_killer

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Subdomain enumeration through various techniques

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

Extract subdomains from SSL certificates in HTTPS sites.

Automatic SSRF fuzzer and exploitation tool

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Set of tools to audit SIP based VoIP Systems

Venom - A Multi-hop Proxy for Penetration Testers

A wrapper for Nmap to quickly run network scans

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

🔐 Docker Container for Penetration Testing & Security

A cli for cracking, testing vulnerabilities on Json Web Token(JWT)

台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan

Writeups for vulnerable machines.

Quick SQL Scanner, Dorker, Webshell injector PHP

Open Redirect Payloads

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

This tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

generates weak passwords based on current date

Exploiting challenges in Linux and Windows

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

Penetration Testing notes, resources and scripts

Exploits developed by me.

Linux kernel development & exploitation lab.

Micro-framework for rapid development of reusable security tools

oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

This powershell script has got to run in remote hacked windows host, even for pivoting

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Multi OTP Spam Amp/Paralell threads

A Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.

Fast directory scanning and scraping tool

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Hacking Toolkit

CTF programs and writeups

Search for Unix binaries that can be exploited to bypass system security restrictions.

Create a VPS on Google Cloud Platform or Digital Ocean easily with Offensive Docker included to launch assessment to the targets.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Hacker101 CTF Writeup

Framework for rapid development and reusable of security tools

👻Impost3r -- A linux password thief

Pentest Lab on OpenStack with Heat, Chef provisioning and Docker

C2/post-exploitation framework

hydra

The Correlated CVE Vulnerability And Threat Intelligence Database API

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Automate Pentest Tool

This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Automation for internal Windows Penetrationtest / AD-Security

Python AV Evasion Tools

A tool to automate penetration tests

A collection of curated Java Deserialization Exploits

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A curated list of awesome OSCP resources