1044 Open source projects that are alternatives of or similar to Trigmap

A curated list of awesome privilege escalation

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

C2/post-exploitation framework

Fast directory scanning and scraping tool

OSINT Tool: Generate username lists for companies on LinkedIn

NetCat for Windows

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

my oscp prep collection

unix SSH post-exploitation 1337 tool

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Automate Pentest Tool

A web front-end for password cracking and analytics

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Hack the World using Termux

MSDAT: Microsoft SQL Database Attacking Tool

Ruby on Rails Phishing Framework

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

A collection of public offensive and defensive security related scripts for InfoSec students.

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Exploit Pack -The next generation exploit framework

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Open source all-in-one CLI tool to semi-automate pentesting.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

The Last Web Recon Tool You'll Need

Interactive Network Scanner

Fast Modular Web Interfaces Bruteforcer

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

个人维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Burp extension to passively scan for applications revealing software version numbers

ODAT: Oracle Database Attacking Tool

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Burp Suite extension to passively scan for applications revealing server error messages

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

Privilege Escalation Enumeration Script for Windows

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Penetration Testing Platform

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Simple Karma Attack

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A fast web directory/file enumeration tool written in Rust