1480 Open source projects that are alternatives of or similar to Writeups

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

brute force SSH public-key authentication

A tool to enumerate network services

WARF is a Web Application Reconnaissance Framework that helps to gather information about the target.

ATT&CK Evaluations website (DEPRECATED)

Oracle Database Penetration Testing Reference (10g/11g)

Malware Machine Learning

An advanced command-line search engine for Exploit-DB

nc 类题目的 Docker 容器资源限制、动态 flag、网页终端

Automated tool for WiFi hacking.

A multi-layered and multi-tiered Machine Learning security solution, it supports always on detection system, Django REST framework used, equipped with a web-browser extension that uses a REST API call.

Fully Optimize, Harden, and Debloat Windows 10 and Windows 11 Deployments to Windows Best Practices and DoD STIG/SRG Requirements. The ultimate Windows 10 & 11 security and privacy script!

Выпускная квалификационная работа (ВКР) магистра в LaTeX, оформленная в соответствии с нормоконтролем Севастопольского государственного университета в 2017 г.

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

Docker image for building ghidra RE framework from source

JSON RSA to HMAC and None Algorithm Vulnerability POC

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

OpenType font file format fuzzer for Windows

Misc. Public Reports of Penetration Testing and Security Audits.

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

A collection of my public security advisories.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Python Powered Repository

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

Top 20 Kali Linux Related E-books (Free Download)

Pentester's Promiscuous Notebook

Reverse shell manager using tmux and ncat

Provides various Windows Server Active Directory (AD) security-focused reports.

Threat Pursuit Virtual Machine (VM): A fully customizable, open-sourced Windows-based distribution focused on threat intelligence analysis and hunting designed for intel and malware analysts as well as threat hunters to get up and running quickly.

This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, sublist3r, metasploit, etc.)

Yet Another LInkedIn Scraper...

(Windows/Linux/Mac) Remote Administration Tool

adversarial examples, adversarial malware examples, adversarial malware detection, adversarial deep ensemble, Android malware variants

Load shellcode via HELLGATE, Rewrite hellgate with .net framework for learning purpose.

onedrive user enumeration - pentest tool to enumerate valid onedrive users

Easily scan files for threats to security and privacy. A Rust library and command line tool. WIP.

All of my recommendations for aspiring engineers in a single place, coming from various areas of interest.

An Awesome List of Moroccan Cyber Security Researchers, Pentesters, Bug Hunters.

Wordlists and passwords handcrafted with ♥

This Buffer Overflow Toolkit works through FTP, SMTP, POP, HTTP protocols as well file outputs for playlists exploiting customized variables/commands. Payloads can be generated through MSFVENOM or you can use your own ASM files.

A template for writing a condensed course index leveraging LaTeX indexing

Ghidra scripts for malware analysis

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Agent scanner for vulners.com

Search for Unix binaries that can be exploited to bypass system security restrictions.

ClusterFuzzLite - Simple continuous fuzzing that runs in CI.

🦄🔒 Awesome list of secrets in environment variables 🖥️

PHDays Online CTF 2017. Developed with ♥ by Hackerdom team

cms识别

Advisories and Proofs of Concept by BlackArrow

[WIP] A simple Ghidra loader for GameBoy ROMs

Ubuntu on QNAP TS-453Be

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

The official wrapper for spyse.com API, written in Go, aimed to help developers build their integrations with Spyse.

Tool to communicate with RPC services and check misconfigurations on NFS shares

Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.

Public Disclosures