106 Open source projects that are alternatives of or similar to xss-catcher

Work in progress...

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

PHP shells that work on Linux OS, macOS, and Windows OS.

Windows OS keylogger with a hook mechanism (i.e. with a keyboard hook procedure).

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

A high performance offensive security tool for reconnaissance and vulnerability scanning

⛔️ offsec batteries included

🆕 The Multi-Tool Web Vulnerability Scanner.

hacking tool

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabilities via .NET's DLR.

Penetration testing utility, and antivirus assessment tool.

Windows shellcode development in Rust

Red Teaming Tactics and Techniques

Offensive Terraform Website

Offensive tools as Dockerfiles. Lightweight & Ready to go

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

It records your terminal, then lets you upload to ASHIRT

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Don't let buffer overflows overflow your mind

This is my cheatsheet and scripts developed while taking the Offensive Security Penetration Testing with Kali Linux course.

network reconnaissance toolkit

Leaked pentesting manuals given to Conti ransomware crooks

GUI based offensive penetration testing tool (Open Source)

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Tool for working with Direct System Calls in Cobalt Strike's Beacon Object Files (BOF) via Syswhispers2

Work in progress...

This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.

☠️ The Pathwar Project ☠️

Toolset for detecting reflected xss in websites

My OSCP journey

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

A curated list of awesome OSCP resources

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Roadmap for preparing for OSCP, anyone is free to use this, and also feedback and contributions are welcome

C2/post-exploitation framework

A tool for generating reverse shell payloads on the fly.

Modified template for the OSCP Exam and Labs. Used during my passing attempt

Automated NoSQL database enumeration and web application exploitation tool.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Ethical Hacking Toolkit is a collection of tools, cheat sheets, and resources for Ethical hackers, Penetration Tester, and Security Researchers etc. It contains almost all tools mentioned in CEH, OSCP, eCPPT and PNPT

My own OSCP guide

Red Teaming Tactics and Techniques

swiss army knife for hackers

Some Pentesters, Security Researchers, Red Teamers which i learned from them a lot...

Cross Origin Resource Sharing MisConfiguration Scanner

Freedom Fighting Mode: open source hacking harness

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Exploits and Security Tools Framework 2.0.1

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

unix SSH post-exploitation 1337 tool

🍪 Flask Session Cookie Decoder/Encoder

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.