695 Open source projects that are alternatives of or similar to Tactical Exploitation

Find emails of Github users

Automated Pentest Tools Designed For Parrot Linux

AD Security Intrusion Detection System

🔴 Curso GRÁTIS SAMBA 4 Level 1 REPOSITÓRIO CONGELADO - Esse repositório não irá mais receber atualizações.

Penetration Testing notes, resources and scripts

Gotanda is browser Web Extension for OSINT.

Authentication classes to be used with httpx

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

A simple multi-threaded distributed SSH brute-forcing tool written in Python

Just Simple Code To Play With Android Payloads (;

Hacking Tools Z0172CK

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Workshop Materials from DEFCON 25 (7/27/2017)

CLI program that collects information from facebook user profiles via Selenium.

Simple tool written in python3 to perform limited brute-force attacks on gmail accounts.

Information Gathering tool for a Website or IP address

FazPort is an advanced Perl Port Scanner. Scan and Detect open port in every website(s) you want.

BFSG - BruteForce String Generator 😾

GoPhish Templates that I have retired and/or templates I've recreated.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

pentest toolbox

Offensive Reverse Shell (Cheat Sheet)

An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)

A list of web application security

🔍 IRIS: An open-source intelligence framework

simple discord nitro code generator and checker written in c#

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

The best way to scan for weak ssh passwords on your network

Kubernetes Identity Management Lab

A dictionary attack tool for PostgreSQL and MSSQL

Hamburglar -- collect useful information from urls, directories, and files

A Collection of articles, videos, blogs, talks and other materials on Node.js Security

Brute-force, error and request rate limiting

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Gosint is a distributed asset information collection and vulnerability scanning platform

Modular personalized dictionary generator.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Directory/Subdomain scanner developed in GoLang.

unofficial Active Directory Authentication Library for go

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Gmail account using brute force attack

A brute force attacker with packages for development in Python 3, Kotlin, C#, Go, Vala, and C++.

Active Directory strategy for passport.js

The standard Active Directory object picker dialog for .NET

Simplest Java API (and CLI) for authenticating and searching in Active Directory

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

Host Header Injection Checker

Following PowerShell Module provides different approach to scheduling password notifications for expiring Active Directory based accounts. While most of the scripts require knowledge on HTML... this one is just one config file and a bit of tingling around with texts. Whether this is good or bad it's up to you to decide. I do plan to add an optio…

HostHunter a recon tool for discovering hostnames using OSINT techniques.

An advanced tool for email reconnaissance

Terraform script to deploy AD-based environment on Azure

A friendly Toolkit for Beginner CTF players

Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

The Red Rabbit project is just what a hacker needs for everyday automation. Red Rabbit unlike most frameworks out there does not automate other peoples tools like the aircrack suite or the wifite framework, it rather has its own code and is raw source with over 270+ options. This framework might just be your everyday key to your workflow

🔒Unified API for password hashing algorithms

My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.

Functions that can be used to gain Reverse Shells with PowerShell