1142 Open source projects that are alternatives of or similar to Thecollective

Collection of pentesting scripts

A curated list of awesome infosec courses and training resources.

linuxprivchecker.py -- a Linux Privilege Escalation Check Script

Easy files and payloads delivery over DNS

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.

🐶 A curated list of Web Security materials and resources.

Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.

Collection of PoC and offensive techniques used by the BlackArrow Red Team

Web Content Discovery Tool

A curriculum for a high school cyber security course.

Network Pivoting Toolkit

An advanced graphical search engine for Exploit-DB

The best Hacking and PenTesting tools installer on the world

Windows shellcode development in Rust

Smersh is a pentest oriented collaborative tool used to track the progress of your company's missions.

Self contained htaccess shells and attacks

A list of web application security

👻 A LAN dropbox chatbot controllable via Telegram

Reverse proxies cheatsheet

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

A portable console aimed at making pentesting with PowerShell a little easier.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Extract subdomains from SSL certificates in HTTPS sites.

Educational, CTF-styled labs for individuals interested in Memory Forensics

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

This is a multi-use bash script for Linux systems to audit wireless networks.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Discover Your Attack Surface!

The AI Application Platform We All Need. Human AND Machine Intelligence. Based on experience building AI solutions at Panasonic: robotics predictive maintenance, cold-chain energy optimization, Gigafactory battery mfg, avionics, automotive cybersecurity, and more.

Advanced Graphical User Interface for NMap

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

A fast DOM based XSS vulnerability scanner with simplicity.

ConPtyShell - Fully Interactive Reverse Shell for Windows

Weaponizing Live CT logs for automated monitoring of assets

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

A simple keylogger for Windows, Linux and Mac

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Android Apps, Roms and Platforms for Pentesting

Hetty is an HTTP toolkit for security research.

DNS Sub-domain brute forcer, in Python + gevent

A Python RESTful API framework for online malware analysis and threat intelligence services.

Web Pentesting Fuzz 字典,一个就够了。

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Everything needed for doing CTFs

🎯 XML External Entity (XXE) Injection Payload List

All of my recommendations for aspiring engineers in a single place, coming from various areas of interest.

IPv6 attack toolkit

Network Intrusion Detection KDDCup '99', NSL-KDD and UNSW-NB15

A cross-platform note-taking & target-tracking app for penetration testers.

Intercept, modify, repeat and attack Android's Binder transactions using Burp Suite

Freedom Fighting Mode: open source hacking harness

Tool Information Gathering Write By Python.