1044 Open source projects that are alternatives of or similar to Trigmap

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

Ruby on Rails Phishing Framework

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

MSDAT: Microsoft SQL Database Attacking Tool

A Cloudflare resolver that works

Study Notes For Web Hacking / Web安全学习笔记

Elasticsearch for Offensive Security

WaTF Bank - What a Terrible Failure Mobile Banking Application for Android and iOS

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Pop shells like a master.

A Python-powered exploitation framework and botnet.

jSQL Injection is a Java application for automatic SQL database injection.

BlackRAT - Java Based Remote Administrator Tool

Vulnerability Dashboard

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

GUI based offensive penetration testing tool (Open Source)

An awesome resource listing and explaining various commonly used *nix commands

Thoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.

Scripts I use during pentest engagements.

A Hashcat wrapper for distributed hashcracking

Exploit pack for pentesters and ethical hackers.

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Semi-automatic OSINT framework and package manager

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Vulnerability Recurrence:漏洞复现记录

My collection of nmap NSE scripts

Find exploit tool

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Directory Services Internals (DSInternals) PowerShell Module and Framework

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) remote administration and post-exploitation tool mainly written in python

C2Hack, sharing tips and tricks for pentesters

EmbedOS - Embedded security testing virtual machine

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

🆕 The Multi-Tool Web Vulnerability Scanner.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

A set of recipes useful in pentesting and red teaming scenarios

A list of resources for those interested in getting started in bug bounties

Red Teaming Tactics and Techniques

Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io) and LOLBAS (https://github.com/LOLBAS-Project/LOLBAS)

A collection of various awesome lists for hackers, pentesters and security researchers

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Responsive Command and Control System

被动式漏洞扫描系统

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

An advanced graphical search engine for Exploit-DB