awesome-repositories.com
Blog
awesome-repositories.com

Entdecke die besten Open-Source-Repositories mit KI-gestützter Suche.

EntdeckenKuratierte SuchenOpen-Source-AlternativenSelf-hosted SoftwareBlogSitemap
ProjektÜber unsRanking-MethodikPresseMCP-Server
RechtlichesDatenschutzAGB
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·
Back to nullarray/autosploit

Open-source alternatives to AutoSploit

30 open-source projects similar to nullarray/autosploit, ranked by how many features they have in common. Compare stars, activity and what each one does to find the best AutoSploit alternative.

  • r0oth3x49/ghauriAvatar von r0oth3x49

    r0oth3x49/ghauri

    4,032Auf GitHub ansehen↗

    Ghauri is an automated SQL injection scanner and exploitation tool designed to detect and extract data from vulnerable databases. It functions as a database exfiltration framework that identifies security flaws and retrieves system banners, hostnames, and database schemas. The tool identifies boolean, error, time-based, and stacked query vulnerabilities across multiple input vectors, including HTTP headers, cookies, JSON, SOAP, and XML. It provides capabilities for automated database exfiltration and the processing of bulk target lists to identify flaws across multiple environments. The syst

    Python
    Auf GitHub ansehen↗4,032
  • owasp/nettackerAvatar von OWASP

    OWASP/Nettacker

    5,258Auf GitHub ansehen↗

    Nettacker is an automated penetration testing framework designed to orchestrate reconnaissance, port scanning, and vulnerability detection. It functions as a network reconnaissance tool and vulnerability scanner that identifies open ports, fingerprints services, and checks systems against databases of known security flaws. The framework distinguishes itself by combining a web application crawler for discovering hidden paths via fuzzing with a vulnerability management system that persists scan results in a database to track historical assessments. It also includes specialized capabilities for

    Pythonautomationbruteforcecve
    Auf GitHub ansehen↗5,258
  • manisso/fsocietyAvatar von Manisso

    Manisso/fsociety

    12,136Auf GitHub ansehen↗

    fsociety is a penetration testing framework and security tool orchestrator designed to conduct full security audits. It functions as a wrapper that integrates external security binaries into a unified, menu-driven interface, providing a centralized system for command-line parameter mapping and execution. The project distinguishes itself by organizing specialized utilities into domain-specific collections for structured navigation. It automates the transition between different phases of an audit by chaining reconnaissance and exploitation tools through sequential workflow automation. The fram

    Pythonbrute-force-attacksdesktopexploitation
    Auf GitHub ansehen↗12,136

KI-Suche

Entdecke weitere awesome Repositories

Beschreibe in einfachen Worten, was du brauchst — die KI bewertet tausende kuratierte Open-Source-Projekte nach Relevanz.

Find more with AI search
  • zhzyker/exphubAvatar von zhzyker

    zhzyker/exphub

    4,282Auf GitHub ansehen↗

    Exphub is a CVE exploit script library and enterprise software vulnerability suite designed to verify and exploit known security flaws in server environments such as WebLogic, Struts2, Tomcat, and JBoss. It functions as a remote code execution toolkit and a web shell deployment framework for triggering unauthorized command execution and establishing persistent access on remote systems. The project includes specialized utilities for internal network reconnaissance, specifically using server-side request forgery to scan for open ports and services. It further provides mechanisms for bypassing a

    Pythoncve-2020-10199cve-2020-10204cve-2020-11444
    Auf GitHub ansehen↗4,282
  • xtls/realityAvatar von XTLS

    XTLS/REALITY

    5,272Auf GitHub ansehen↗

    REALITY is a censorship circumvention tool and network traffic obfuscator designed to bypass internet filters. It functions as a secure tunneling protocol that masks connection patterns and identity by mimicking the TLS handshakes of legitimate target websites. The system removes server-side TLS fingerprints to hide encrypted traffic from network monitoring tools and deep packet inspection. It employs a website mimicking proxy to present valid handshakes and forward traffic to destination servers, masquerading the connection as a legitimate site visit. The project incorporates a quantum-resi

    Gorealityvlessxray
    Auf GitHub ansehen↗5,272
  • mantvydasb/redteaming-tactics-and-techniquesAvatar von mantvydasb

    mantvydasb/RedTeaming-Tactics-and-Techniques

    4,620Auf GitHub ansehen↗

    This project is a red teaming knowledge base and offensive security playbook designed to simulate adversary behavior. It serves as a comprehensive collection of technical guides and tactics for executing red team operations. The repository provides detailed instructions for Active Directory exploitation, including Kerberos abuse and domain privilege escalation. It covers defense evasion through API unhooking and payload obfuscation, as well as Windows internals research involving the manipulation of kernel objects and system memory. The capability surface extends to network penetration testi

    PowerShelloffensive-securityoscppentesting
    Auf GitHub ansehen↗4,620
  • speedyapply/jobspyAvatar von speedyapply

    speedyapply/JobSpy

    3,716Auf GitHub ansehen↗

    JobSpy is a job board scraper and listing aggregator designed to extract employment opportunities from multiple websites and compile them into a unified dataset. It functions as a job search automation tool that programmatically collects vacancies based on keywords, locations, and specific filters. The project serves as a web scraping framework that utilizes proxy routing and user-agent rotation to bypass rate limits and avoid server-side blocking during data extraction. It includes infrastructure for concurrent request aggregation and schema-based data normalization to ensure consistent form

    Pythonbaytbdjobsglassdoor
    Auf GitHub ansehen↗3,716
  • n1nj4sec/pupyAvatar von n1nj4sec

    n1nj4sec/pupy

    8,942Auf GitHub ansehen↗

    Pupy is a command and control framework and post-exploitation suite used for remote administration and system management. It functions as a cross-platform tool for deploying payloads and controlling multiple remote agents through encrypted communication channels. The framework features a multi-platform payload generator that creates custom executable files using configurable network launchers. It employs a network traffic obfuscator that stacks encryption and obfuscation protocols to hide communication from observation. The system provides capabilities for in-memory code execution, remote pr

    Pythonandroidbackdoorlinux
    Auf GitHub ansehen↗8,942
  • cbeuw/cloakAvatar von cbeuw

    cbeuw/Cloak

    4,026Auf GitHub ansehen↗

    Cloak is a set of censorship circumvention tools designed for secure proxy tunneling and internet traffic obfuscation. It focuses on bypassing restrictive firewalls and state surveillance by disguising proxy connections as standard web browsing. The project utilizes HTTP fingerprint masquerading to imitate common browser signatures and routes traffic through content delivery networks to mask the identity of the origin server. To further hide the server's purpose, it includes a mechanism to redirect unauthenticated connection requests to a third-party website. The system implements transport

    Gocensorshipcensorship-circumventiongfw
    Auf GitHub ansehen↗4,026
  • k8gege/k8toolsAvatar von k8gege

    k8gege/K8tools

    6,167Auf GitHub ansehen↗

    K8tools is a multi-stage attack framework that combines memory-only payload execution, credential testing, port forwarding, privilege escalation, and physical USB-based keystroke injection for comprehensive system compromise. At its core, the Ladon PowerShell module loads a multi-function scanner directly into memory, enabling command execution without writing files to disk, while supporting memory-only payload delivery that downloads and runs obfuscated shellcode or PowerShell commands to evade antivirus detection. The framework distinguishes itself through its breadth of integrated capabili

    PowerShell0daybrute-forcebypass
    Auf GitHub ansehen↗6,167
  • leebaird/discoverAvatar von leebaird

    leebaird/discover

    3,892Auf GitHub ansehen↗

    Discover is an integrated suite of security tools designed for penetration testing, container auditing, payload generation, network reconnaissance, and automated open-source intelligence gathering. This collection of bash scripts provides a coordinated framework for security auditing on Kali Linux and Ubuntu. The toolkit includes a specialized generator for creating reverse shell payloads across various hardware architectures and operating systems, paired with automated configuration for network listeners. It also features a dedicated container security auditor to identify vulnerabilities, le

    Shellbashenumerationinformation-gathering
    Auf GitHub ansehen↗3,892
  • shadow1ng/fscanAvatar von shadow1ng

    shadow1ng/fscan

    13,421Auf GitHub ansehen↗

    Fscan is an automated penetration testing tool designed for internal network reconnaissance and vulnerability assessment. It functions as a comprehensive security framework that maps network infrastructure, identifies active hosts and services, and detects security weaknesses across internal environments. The tool distinguishes itself through a modular plugin architecture that allows for extensible security checks and a stateful asset tracking system that maintains an in-memory registry of discovered infrastructure. It incorporates a dedicated credential brute-force engine for testing passwor

    Go
    Auf GitHub ansehen↗13,421
  • bee-san/rustscanAvatar von bee-san

    bee-san/RustScan

    19,969Auf GitHub ansehen↗

    RustScan is a high-speed network reconnaissance tool designed for automated port discovery and service enumeration. It functions as an automated vulnerability scanner that identifies open ports and active services across network environments, providing a foundation for mapping attack surfaces and gathering intelligence on target systems. The tool distinguishes itself through its ability to dynamically adjust scanning parameters and concurrency in real-time based on system feedback, ensuring efficient performance while preventing network congestion. It features an extensible architecture that

    Rustdockerhackinghacktoberfest
    Auf GitHub ansehen↗19,969
  • bda-research/node-crawlerAvatar von bda-research

    bda-research/node-crawler

    6,785Auf GitHub ansehen↗

    node-crawler is a programmable web crawler for Node.js that manages request queues and automates data extraction. It functions as a rate-limited HTTP client and a headless HTML parser, providing the infrastructure to visit large sets of URLs asynchronously while preventing duplicate processing through task deduplication. The project distinguishes itself through a proxy rotation manager that cycles user agents and proxy servers to bypass access restrictions. It utilizes the HTTP/2 protocol to improve request performance and server compatibility during large-scale scraping operations. The syst

    TypeScriptcheeriocrawlerextract-data
    Auf GitHub ansehen↗6,785
  • t3l3machus/hoaxshellAvatar von t3l3machus

    t3l3machus/hoaxshell

    3,421Auf GitHub ansehen↗

    Hoaxshell is a command and control system for Windows remote command execution. It provides a framework for generating and managing reverse shell payloads that utilize an HTTP beaconing protocol, where victim clients periodically poll a handler to receive and execute instructions. The project distinguishes itself through its ability to bypass PowerShell Constrained Language Mode using specialized payload generation. It supports encrypted command and control via TLS certificate injection and provides mechanisms for remote session recovery, allowing a handler to reestablish control over active

    Pythonhackingopen-sourcepenetration-testing
    Auf GitHub ansehen↗3,421
  • rub-nds/pretAvatar von RUB-NDS

    RUB-NDS/PRET

    4,267Auf GitHub ansehen↗

    PRET is a network printer exploitation framework and security utility designed for discovering printing hardware and auditing firmware. It serves as a toolkit for penetrating printing infrastructure by manipulating printer-specific control languages and protocols. The project provides specialized capabilities for triggering remote code execution via buffer overflows and managing printer file systems using the Printer Job Language. It allows for the extraction of device metadata, such as firmware versions and memory resources, and the modification of hardware behaviors and system parameters.

    Python
    Auf GitHub ansehen↗4,267
  • 1n3/sn1perAvatar von 1N3

    1N3/Sn1per

    10,049Auf GitHub ansehen↗

    Sn1per is a vulnerability management platform and penetration testing orchestrator designed to automate reconnaissance, vulnerability scanning, and exploit verification. It functions as a dockerized security toolkit that coordinates multiple tools into a unified automated pipeline to identify security flaws across network and web assets. The platform features an attack surface manager for discovering internet-facing assets through OSINT, DNS enumeration, and certificate transparency. It distinguishes itself with an AI-powered security analyzer that uses large language models to summarize scan

    Shellattack-surfaceattack-surface-managementattacksurface
    Auf GitHub ansehen↗10,049
  • samsar4/ethical-hacking-labsAvatar von Samsar4

    Samsar4/Ethical-Hacking-Labs

    3,397Auf GitHub ansehen↗

    Ethical-Hacking-Labs is a comprehensive cybersecurity training curriculum and lab suite designed for learning penetration testing, network analysis, and offensive security techniques. It provides a structured environment for practicing the full attack lifecycle, from initial reconnaissance and scanning to exploitation and post-compromise analysis. The project provides instructional materials and guided exercises that cover specific technical domains, including open source intelligence research and network security courseware. It includes a practical workbook for identifying system vulnerabili

    ethical-hacking-labshackinglinux
    Auf GitHub ansehen↗3,397
  • wulabing/xray_onekeyAvatar von wulabing

    wulabing/Xray_onekey

    9,262Auf GitHub ansehen↗

    Xray_onekey is an automated Linux network proxy deployer and installation script. It is designed to install and configure Xray proxy servers on Debian or Ubuntu systems to create secure, encrypted network tunnels. The tool specifically implements VLESS XTLS proxy servers, utilizing a stateless transmission protocol and a specialized encryption layer to secure and obfuscate internet traffic. It incorporates an Nginx reverse proxy setup to mask proxy traffic, making incoming requests appear as standard web server activity. The deployment process is handled via bash scripts that automate the in

    Shellnginxtlsv2ray
    Auf GitHub ansehen↗9,262
  • moham3driahi/th3inspectorAvatar von Moham3dRiahi

    Moham3dRiahi/Th3inspector

    2,571Auf GitHub ansehen↗

    Th3inspector is a command-line open-source intelligence reconnaissance tool used for gathering public information on websites, phone numbers, and network records. It functions as a central interface for collecting technical metadata and performing various lookups to build profiles of target entities. The project provides specialized verification utilities for validating email addresses, phone numbers, and credit card bank identification numbers. It also includes tools for retrieving domain registration age, ownership records, and identified subdomains from global databases. Additional capabi

    Perlage-checkcloudflarecms-detector
    Auf GitHub ansehen↗2,571
  • owasp/amassAvatar von OWASP

    OWASP/Amass

    14,722Auf GitHub ansehen↗

    Amass is a network attack surface mapper and reconnaissance framework designed to discover and map the external, internet-facing infrastructure of a target organization. It functions as an open source intelligence tool that identifies public network boundaries and locates hidden or forgotten subdomains to define an organization's total reachable footprint. The project utilizes passive-source data aggregation from external APIs and public databases alongside active DNS brute-forcing and recursive subdomain expansion. It employs a graph-based asset mapping system to visualize the relationships

    Go
    Auf GitHub ansehen↗14,722
  • epinna/tplmapAvatar von epinna

    epinna/tplmap

    4,169Auf GitHub ansehen↗

    tplmap is a security tool designed for the detection and exploitation of server-side template injection vulnerabilities. It functions as an automated scanner to identify vulnerable template engine contexts and provides a framework for achieving remote code execution. The tool focuses on translating high-level requests into engine-specific syntax to execute operating system commands and bypass application sandboxes. It further enables remote file system access, allowing users to read, write, and transfer files between a local machine and a target server. Additional capabilities include the ab

    Python
    Auf GitHub ansehen↗4,169
  • klzgrad/naiveproxyAvatar von klzgrad

    klzgrad/naiveproxy

    9,196Auf GitHub ansehen↗

    naiveproxy is a censorship circumvention tool and traffic obfuscation proxy. It functions as an HTTP/2 transport proxy that tunnels SOCKS5 traffic over HTTP/2 to hide network activity and bypass network blocks. The project distinguishes itself by mimicking standard web browser requests to evade deep packet inspection. It employs traffic camouflage techniques such as redirecting unauthorized probing requests to decoy web servers and using randomized packet padding to defeat length-based traffic analysis. The software provides a local SOCKS5 proxy endpoint, credential-based request authenticat

    C++
    Auf GitHub ansehen↗9,196
  • mishakorzik/allhackingtoolsAvatar von mishakorzik

    mishakorzik/AllHackingTools

    5,186Auf GitHub ansehen↗

    AllHackingTools is a security tool orchestrator and suite designed to install, update, and manage a wide array of third-party hacking and security utilities from a single command interface. It functions as a centralized hub for network analysis, open source intelligence, penetration testing, and social engineering tools. The project provides specialized frameworks for gathering open source intelligence and searching for user profiles across social platforms. It includes toolkits for network reconnaissance, vulnerability scanning, and the execution of security exploits, as well as a social eng

    Shellall-in-onebruteforcecibersecurity
    Auf GitHub ansehen↗5,186
  • jaykali/maskphishAvatar von jaykali

    jaykali/maskphish

    3,020Auf GitHub ansehen↗

    Maskphish is a comprehensive security toolkit that integrates capabilities for digital forensics, network vulnerability scanning, open-source intelligence, penetration testing, and social engineering. It functions as a multi-purpose framework for automating reconnaissance and executing security audits across diverse network environments. The project features a specialized phishing and social engineering toolkit used for cloning websites, masking URLs, and deploying deceptive pages to capture user credentials. It also includes a remote access Trojan builder for generating platform-specific exe

    Shellhackhackinghacking-tool
    Auf GitHub ansehen↗3,020
  • cobbr/covenantAvatar von cobbr

    cobbr/Covenant

    4,699Auf GitHub ansehen↗

    Covenant is a .NET-based command and control framework designed for red team operations and adversary simulation. It serves as a collaborative platform for coordinating security assessments, managing remote implants, and executing tasks on compromised systems through a centralized server. The project is distinguished by its dynamic payload generator, which compiles and obfuscates executable binaries and scripts on the fly to bypass detection. It further separates itself through a collaborative environment that allows multiple authenticated operators to share a synchronized state, track operat

    C#
    Auf GitHub ansehen↗4,699
  • google/tsunami-security-scannerAvatar von google

    google/tsunami-security-scanner

    8,584Auf GitHub ansehen↗

    Tsunami Security Scanner is a network vulnerability scanner and security auditor designed to identify high-severity flaws across network assets. It functions as an asynchronous security probe engine that utilizes automated probes and specialized detection logic to find critical weaknesses and prioritize remediation efforts. The project is distinguished by a plugin-based scanning engine, which uses a modular architecture of interchangeable detection plugins to identify vulnerabilities. This extensibility allows for the development and integration of custom security plugins to expand the variet

    Java
    Auf GitHub ansehen↗8,584
  • bettercap/bettercapAvatar von bettercap

    bettercap/bettercap

    18,855Auf GitHub ansehen↗

    Bettercap is a modular framework designed for network reconnaissance, security testing, and the execution of man-in-the-middle attacks. It functions as a comprehensive utility for surveying wired and wireless network segments, identifying connected devices, and analyzing communication protocols through real-time traffic interception and manipulation. The platform distinguishes itself through an event-driven architecture that coordinates network state changes and packet-level data through a centralized message pipeline. It provides a programmable scripting engine and an API for orchestrating s

    Gobledeauthentication-attackdot11
    Auf GitHub ansehen↗18,855
  • rhinosecuritylabs/pacuAvatar von RhinoSecurityLabs

    RhinoSecurityLabs/pacu

    5,234Auf GitHub ansehen↗

    Pacu is an exploitation framework designed for auditing and testing the security of Amazon Web Services environments. It serves as a cloud penetration testing tool and resource enumerator used to identify misconfigurations, map attack surfaces, and execute privilege escalation paths. The framework provides specialized capabilities for post-exploitation and red team operations, including establishing persistence through identity and access management backdooring. It distinguishes itself with a plugin-based module system that allows for the development of custom tasks and the orchestration of A

    Python
    Auf GitHub ansehen↗5,234
  • cyfdecyf/cowAvatar von cyfdecyf

    cyfdecyf/cow

    8,421Auf GitHub ansehen↗

    This project is a Go-based HTTP proxy server designed as a censorship circumvention tool. It functions as an upstream proxy manager and SOCKS5 tunneling gateway that routes network traffic between clients and destination servers to bypass network restrictions. The system differentiates itself through automated proxy routing, which detects unreachable websites and automatically switches traffic between direct access and a pool of parent proxies. It includes a PAC file generator to produce proxy auto-config files for browsers and integrates SSH tunneling to establish secure remote sockets. Bro

    Go
    Auf GitHub ansehen↗8,421