1180 Open source projects that are alternatives of or similar to Zynix Fusion

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

📡 A python program to create a fake AP and sniff data.

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Set of tools to audit SIP based VoIP Systems

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

The ultimate WinRM shell for hacking/pentesting

A simple dns resolver of dns-record and web-record log server for pentesting

Know the dangers of credential reuse attacks.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Python network worm that spreads on the local network and gives the attacker control of these machines.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Offensive tools as Dockerfiles. Lightweight & Ready to go

A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

⛔️ offsec batteries included

A curated list of awesome OSCP resources

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

A tool to fastly get all javascript sources/files

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

RubberDucky like payloads for DigiSpark Attiny85

Rockyou for web fuzzing

retrieve information via O365 with a valid cred

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

Linux privilege escalation checks (systemd, dbus, socket fun, etc)

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Red Teaming Tactics and Techniques

👻 A LAN dropbox chatbot controllable via Telegram

OSINT

This is a multi-use bash script for Linux systems to audit wireless networks.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

🤖 The Modern Port Scanner 🤖

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Quickly analyze and reverse engineer Android packages

A curated list of awesome privilege escalation

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Extract endpoints from APK files

Useful tools and scripts during Penetration Testing engagements

Penetration Testing notes, resources and scripts

OSINT Tool: Generate username lists for companies on LinkedIn

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

Advanced Web Shell

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Next generation web scanner

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

🔪 Leak git repositories from misconfigured websites