2836 Open source projects that are alternatives of or similar to Xattacker

onex is a hacking tool installer and package manager for hackers. Onex is a library of all hacking tools for Termux and other Linux distributions. onex can install any third party tool or any hacking tool for you.

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, polkit, docker socket

Complete Listing and Usage of Tools used for Ethical Hacking

Web Scan Lazy Tools - Python Package

A collection of android Exploits and Hacks

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Hacker101 CTF Writeup

Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contributions are appreciated. Enjoy!

Auto Scanning to SSL Vulnerability

Dorks for shodan.io. Some basic shodan dorks collected from publicly available data.

Your Google Recon is Now Automated

grep rough audit - source code auditing tool

Personal CTF Toolkit

Vulners Python API wrapper

👁 (s)AINT is a Spyware Generator for Windows systems written in Java. [Discontinued]

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

The ultimate WinRM shell for hacking/pentesting

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

Web-based Source Code Vulnerability Scanner

Awesome hacking is an awesome collection of hacking tools.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

平常看到好的渗透hacking工具和多领域效率工具的集合

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

An open source batch script based WiFi Passview for Windows!

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

This is an advanced script for Instagram bruteforce attacks. WARNING THIS IS A REAL TOOL!

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

🔺 Red Team Hardware Toolkit 🔺

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as well as lateral movement automatically in the network

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

A tool for identifying misconfigured CloudFront domains

Bandit is a tool designed to find common security issues in Python code.

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

A list of web application security

💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002

Penetration Testing notes, resources and scripts

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

🔎 shodansploit > v1.3.0

AndroRAT | Remote Administrator Tool for Android OS Hacking

SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.

Secure, Unified, Powerful and Extensible Rust Android Analyzer

New Interface And Loading Screen For Termux Users

CTF Cheatsheet

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

Unified, Docker 🐳 powered web development environment for macOS, Windows, and Linux

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

🔨 Manage your website via terminal

A list of resources for those interested in getting started in bug bounties

Git All the Payloads! A collection of web attack payloads.

Tangalanga: the Zoom conference scanner hacking tool

Windows 8.1 and 10 UAC bypass abusing WinSxS in "dccw.exe".

WEB SERVICE SECURITY ASSESSMENT TOOL

Log any method call of object in Objective-C

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

mXtract - Memory Extractor & Analyzer

🤖 The Modern Port Scanner 🤖

cwe_checker finds vulnerable patterns in binary executables

Patch iOS Apps, The Easy Way, Without Jailbreak.

Information Gathering tool for a Website or IP address