403 Open source projects that are alternatives of or similar to Umbrella

pentest framework

Generate unicode evil domains for IDN Homograph Attack and detect them.

Phishing Tool & Information Collector

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Domain name permutation engine written in Go

An experimental phishing kit detection tool

C2Hack, sharing tips and tricks for pentesters

Passwords Recovery Tool

Your Social Engineering Sidekick

Templates for the King Phisher open source phishing campaign toolkit.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Offensive tools as Dockerfiles. Lightweight & Ready to go

Hooks in to interesting functions and helps reverse the web app faster.

🔑 WiFi captive portal for ESP8266 for phishing WiFi passwords

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

SSRF (Server Side Request Forgery) testing resources

🔐 Docker Container for Penetration Testing & Security

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

some pentest scripts & tools by [email protected]

Python script to hunt phishing kits

🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more

XSS'OR - Hack with JavaScript.

Wavestone's web interface for password cracking with hashcat

Wifiphisher is a rogue Access Point framework for conducting red team engagements or Wi-Fi security testing. Using Wifiphisher, penetration testers can easily achieve a man-in-the-middle position against wireless clients by performing targeted Wi-Fi association attacks. Wifiphisher can be further used to mount victim-customized web phishing attacks against the connected clients in order to capture credentials (e.g. from third party login pages or WPA/WPA2 Pre-Shared Keys) or infect the victim stations with malwares.

The ultimate WinRM shell for hacking/pentesting

Future Of Phishing With less delay

Open source all-in-one CLI tool to semi-automate pentesting.

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

A tool to test security of json web token

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

A Cloudflare resolver that works

Tool for catching and logging different types of requests.

Let's track phishing kits to give to research community raw material to study !

Unsorted, raw, ugly & probably poorly usable tools for reversing, exploit and pentest

nray distributed port scanner

A list of payload and bypass lists for penetration testing and red team infrastructure build.

An Infrastructure as Code (IaC) deployment of a small Active Directory pentest lab in the cloud. The deployment simulates a semi-realistic corporate enterprise Active Directory with a DC and endpoints. Purple team goals include blue team detection capabilities and R&D for detection engineering new approaches.

scan for NTLM directories

Keep track of all current ethereum scams in a large database

Find phishing kits which use your brand/organization's files and image.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

PROFESSIONAL TOOL ORIENTED IN THE RECREATION OF PHISHING WEBSITES SCENARIOS

Set of tools to audit SIP based VoIP Systems

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Vulnerability Recurrence:漏洞复现记录

Docker images for infosec tools

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

TechNowLogger is Windows/Linux Keylogger Generator which sends key-logs via email with other juicy target info

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

Username enumeration and password spraying tool aimed at Microsoft O365.

Bruteforce HTTP Authentication

DLL Password Filter Implant with Exfiltration Capabilities

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Collection of quality safety articles. Awesome articles.

🔱 [ Phishing Made Easy ] 🔱 (In Beta)