1699 Open source projects that are alternatives of or similar to YAPS

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV softw…

Open-Source Remote Administration Tool For Windows C# (RAT)

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Unencrypted backdoor

njRAT C# Stub - Fixed For PowerShell

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

A MongoDB importer and API for Project Sonars DNS datasets

A Not So Very Intelligent Fuzzer: An advanced fuzzing framework designed to find vulnerabilities in C/C++ code.

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

LimeRAT | Simple, yet powerful remote administration tool for Windows (RAT)

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Hide your payload into .jpg file

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Everything needed for doing CTFs

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Useful tools and scripts during Penetration Testing engagements

AMWScan (PHP Antimalware Scanner) is a free tool to scan php files and analyze your project to find any malicious code inside it.

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

A web front-end for password cracking and analytics

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

A stealthy Python based Windows backdoor that uses Github as a command and control server

⚡️ ShellCat is a Reverse Shell Manager

PowerShell payload generator

Burp extension to passively scan for applications revealing software version numbers

Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.

Credentials Checking Framework

Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE

Simple Karma Attack

generates weak passwords based on current date

A PHP Based Tool That Helps You To Manage All Your Backdoored Websites Efficiently.

Rustcat(rcat) - The modern Port listener and Reverse shell

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

rsGen is a Reverse Shell Payload Generator for hacking.

A Python 3 standalone Windows 10 / Linux Rootkit using Tor.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

unix SSH post-exploitation 1337 tool

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Related subdomains finder

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

A simple remote tool in C#.

Turn your VPS into an attack box

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

A remote administration tool for Windows, written in C#

Penelope Shell Handler

Windows Remote Administration Tool that uses Discord as C2

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.