awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
NullArray avatar

NullArray/AutoSploit

0
View on GitHub↗
5,240 Stars·1,188 Forks·Python·GPL-3.0·8 Aufrufe

AutoSploit

AutoSploit ist ein automatisiertes Exploitation-Framework zur Entdeckung von Remote-Hosts und zur Ausführung von Exploit-Modulen in großem Maßstab, um Reverse-Shells zu etablieren. Es fungiert als Tool zur Netzwerkaufklärung und als Orchestrator für Remote-Code-Execution, der die Bereitstellung von Angriffsmodulen gegen mehrere Ziele verwaltet.

Das System bietet einen Proxy-basierten Traffic-Masker, der Netzwerkanfragen über externe Server leitet und HTTP-Header sowie User-Agents rotiert, um den Ursprung der Aktivität zu verschleiern. Es ermöglicht die Orchestrierung benutzerdefinierter Exploits durch die Integration externer Angriffsmodule und das Management von Workspace-Verbindungsparametern.

Das Framework deckt die Zielentdeckung via Suchmaschinen-Queries und API-Integrationen ab sowie das Management von Ziellisten mittels externer Dateien und Whitelists. Zudem enthält es Funktionen für die sitzungsbasierte Listener-Konfiguration, um eingehende Remote-Verbindungen zu erfassen.

Features

  • Automated Exploit Execution - Automates the execution of multiple exploit modules against targets to achieve remote code execution at scale.
  • Automated Exploitation Frameworks - Provides an integrated platform for automating remote host discovery and large-scale exploit execution.
  • Target Discovery - Discovers potentially vulnerable remote hosts using search engine queries and specialized API integrations.
  • Search Engine - Collects remote host addresses from search engines using specific keyword queries.
  • Traffic Masking Proxies - Routes network requests through external proxy servers and rotates headers to obscure the source of activity.
  • User Agent Rotation - Rotates and defines custom HTTP headers and user agents to bypass filters and mimic various clients.
  • Exploitation Workflow Managers - Orchestrates listener configurations and custom modules to automate the exploitation of remote services.
  • Exploit Orchestration Managers - Manages the deployment of specific attack modules against multiple targets using customized listeners and workspaces.
  • Attack Module Loaders - Implements a modular system to load and execute interchangeable attack payloads against target lists.
  • Remote Code Execution Tools - Runs sequences of compatible exploit modules to establish active reverse shell sessions on remote targets.
  • Reverse Shell Listeners - Sets up network listeners to capture incoming reverse shell connections from compromised targets.
  • Custom Attack Integrations - Allows the definition and integration of custom external modules to expand the range of attempted attacks.
  • Network Reconnaissance Tools - Collects remote target host addresses via search engines and APIs for security testing.
  • Penetration Testing - Executes automated attack sequences against numerous remote systems to establish reverse shells.
  • Host File Management - Provides mechanisms to load custom host files and apply whitelists to refine lists of active targets.
  • HTTP Header Spoofing - Randomizes HTTP request headers and user agents to disguise the automated nature of network requests.
  • Proxy Routing - Routes outgoing network requests through a set of external proxy servers to hide the origin IP.
  • Traffic Masking Proxies - Routes exploit traffic through proxies and rotates headers to obscure the source of network activity.
  • Network Traffic Obfuscators - Masks network traffic by routing requests through proxies and rotating user agents to evade detection.
  • Pentesting Frameworks - Automated exploitation using Shodan and Metasploit modules.

Star-Verlauf

Star-Verlauf für nullarray/autosploitStar-Verlauf für nullarray/autosploit

KI-Suche

Entdecke weitere awesome Repositories

Beschreibe in einfachen Worten, was du brauchst — die KI bewertet tausende kuratierte Open-Source-Projekte nach Relevanz.

Start searching with AI

Open-Source-Alternativen zu AutoSploit

Ähnliche Open-Source-Projekte, sortiert nach der Anzahl der gemeinsamen Funktionen mit AutoSploit.
  • r0oth3x49/ghauriAvatar von r0oth3x49

    r0oth3x49/ghauri

    4,032Auf GitHub ansehen↗

    Ghauri is an automated SQL injection scanner and exploitation tool designed to detect and extract data from vulnerable databases. It functions as a database exfiltration framework that identifies security flaws and retrieves system banners, hostnames, and database schemas. The tool identifies boolean, error, time-based, and stacked query vulnerabilities across multiple input vectors, including HTTP headers, cookies, JSON, SOAP, and XML. It provides capabilities for automated database exfiltration and the processing of bulk target lists to identify flaws across multiple environments. The syst

    Python
    Auf GitHub ansehen↗4,032
  • owasp/nettackerAvatar von OWASP

    OWASP/Nettacker

    5,258Auf GitHub ansehen↗

    Nettacker is an automated penetration testing framework designed to orchestrate reconnaissance, port scanning, and vulnerability detection. It functions as a network reconnaissance tool and vulnerability scanner that identifies open ports, fingerprints services, and checks systems against databases of known security flaws. The framework distinguishes itself by combining a web application crawler for discovering hidden paths via fuzzing with a vulnerability management system that persists scan results in a database to track historical assessments. It also includes specialized capabilities for

    Pythonautomationbruteforcecve
    Auf GitHub ansehen↗5,258
  • manisso/fsocietyAvatar von Manisso

    Manisso/fsociety

    12,136Auf GitHub ansehen↗

    fsociety is a penetration testing framework and security tool orchestrator designed to conduct full security audits. It functions as a wrapper that integrates external security binaries into a unified, menu-driven interface, providing a centralized system for command-line parameter mapping and execution. The project distinguishes itself by organizing specialized utilities into domain-specific collections for structured navigation. It automates the transition between different phases of an audit by chaining reconnaissance and exploitation tools through sequential workflow automation. The fram

    Pythonbrute-force-attacksdesktopexploitation
    Auf GitHub ansehen↗12,136
  • zhzyker/exphubAvatar von zhzyker

    zhzyker/exphub

    4,282Auf GitHub ansehen↗

    Exphub is a CVE exploit script library and enterprise software vulnerability suite designed to verify and exploit known security flaws in server environments such as WebLogic, Struts2, Tomcat, and JBoss. It functions as a remote code execution toolkit and a web shell deployment framework for triggering unauthorized command execution and establishing persistent access on remote systems. The project includes specialized utilities for internal network reconnaissance, specifically using server-side request forgery to scan for open ports and services. It further provides mechanisms for bypassing a

    Pythoncve-2020-10199cve-2020-10204cve-2020-11444
    Auf GitHub ansehen↗4,282
Alle 30 Alternativen zu AutoSploit anzeigen→

Häufig gestellte Fragen

Was macht nullarray/autosploit?

AutoSploit ist ein automatisiertes Exploitation-Framework zur Entdeckung von Remote-Hosts und zur Ausführung von Exploit-Modulen in großem Maßstab, um Reverse-Shells zu etablieren. Es fungiert als Tool zur Netzwerkaufklärung und als Orchestrator für Remote-Code-Execution, der die Bereitstellung von Angriffsmodulen gegen mehrere Ziele verwaltet.

Was sind die Hauptfunktionen von nullarray/autosploit?

Die Hauptfunktionen von nullarray/autosploit sind: Automated Exploit Execution, Automated Exploitation Frameworks, Target Discovery, Search Engine, Traffic Masking Proxies, User Agent Rotation, Exploitation Workflow Managers, Exploit Orchestration Managers.

Welche Open-Source-Alternativen gibt es zu nullarray/autosploit?

Open-Source-Alternativen zu nullarray/autosploit sind unter anderem: r0oth3x49/ghauri — Ghauri is an automated SQL injection scanner and exploitation tool designed to detect and extract data from vulnerable… owasp/nettacker — Nettacker is an automated penetration testing framework designed to orchestrate reconnaissance, port scanning, and… manisso/fsociety — fsociety is a penetration testing framework and security tool orchestrator designed to conduct full security audits.… zhzyker/exphub — Exphub is a CVE exploit script library and enterprise software vulnerability suite designed to verify and exploit… mantvydasb/redteaming-tactics-and-techniques — This project is a red teaming knowledge base and offensive security playbook designed to simulate adversary behavior.… speedyapply/jobspy — JobSpy is a job board scraper and listing aggregator designed to extract employment opportunities from multiple…