1146 Open source projects that are alternatives of or similar to Vailyn

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Writeup of CVE-2020-15906

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Collection of the most common vulnerabilities found in iOS applications

Exploitation and Mitigation Slides

⚡️An awesome list of the best Termux hacking tools

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Cisco Exploit (CVE-2019-1821 Cisco Prime Infrastructure Remote Code Execution/CVE-2019-1653/Cisco SNMP RCE/Dump Cisco RV320 Password)

Remote exploitation framework written in Python

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

The New Hacking Framework

A swiss army knife for pentesting networks

Hacking tools

Reverse Shell as a Service

🔎 Find origin servers of websites behind CloudFlare by using Internet-wide scan data from Censys.

Find web directories without bruteforce

WeirdAAL (AWS Attack Library)

Infection vector that bypasses AV, IDS, and IPS. (For now...)

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

无状态子域名爆破工具

hack tools

My solutions to some CTF challenges and a list of interesting resources about pwning stuff

The best and easiest way to decode and repack AWVS scripts. AWVS 最好、最简单、最新的解码/再打包方法，仅15行代码！

Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container

vulscan 扫描系统：最新的poc&exp漏洞扫描，redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Single-file PHP shell

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

All MITM attacks in one place.

Burp extension to passively scan for applications revealing software version numbers

Fast directory scanning and scraping tool

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

A container repository for my public web hacks!

VOIP Security Audit Framework

SSH man-in-the-middle tool

WaTF Bank - What a Terrible Failure Mobile Banking Application for Android and iOS

Blind Attacking Framework

A repo with information about security of Ethereum Smart Contracts

Course materials for Modern Binary Exploitation by RPISEC

Automated Mass Exploiter

做redteam时使用，修改自Ridter的https://github.com/Ridter/Intranet_Penetration_Tips

Directory/File, DNS and VHost busting tool written in Go

Our OSCP repo: from popping shells to mental health.

Dump exposed HTTP .git fast

Top disclosed reports from HackerOne

BlackRAT - Java Based Remote Administrator Tool

Security Evaluation of Dynamic Binary Instrumentation Engines

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

WPScan rewritten in Python + some WPSeku ideas

ODAT: Oracle Database Attacking Tool

Open source pre-operation C2 server based on python and powershell

Fast browser-based network discovery module

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

for mass exploiting