Alternatives and similar repositories for LinPwn

Users that are interested in LinPwn are comparing it to the libraries listed below

• aress31 / smbaudit
  Perform various SMB-related attacks, particularly useful for testing large Active Directory environments.
  ☆42Updated 3 years ago
• bitsadmin / nmappy
  NmapPy - Python implementation of Nmap
  ☆35Updated 7 years ago
• smirnovvad / rbuster
  yet another dirbuster
  ☆18Updated 4 years ago
• 1N3 / CloudHunter
  Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them
  ☆36Updated 7 years ago
• joda32 / CertCrunchy
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆29Updated 2 years ago
• sirpsycho / firecall
  Automate SSH communication with firewalls, switches, etc.
  ☆27Updated 7 years ago
• pownjs / duct
  Essential tool for finding blind injection attacks.
  ☆50Updated 6 years ago
• issue2report / issue2report
  Generate pentest reports based on github issues.
  ☆16Updated 3 years ago
• ihebski / Pentest-chainsaw
  Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product
  ☆46Updated 7 years ago
• viperbluff / WAF_buster
  Disrupt WAF by abusing SSL/TLS Ciphers
  ☆48Updated 7 years ago
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆38Updated 7 years ago
• SpiderLabs / Firework
  Firework is a proof of concept tool to interact with Microsoft Workplaces creating valid files required for the provisioning process.
  ☆44Updated 5 years ago
• EgeBalci / AgentTesla_RCE
  AgentTesla botnet C&C RCE exploit.
  ☆16Updated 6 years ago
• n4xh4ck5 / N4xD0rk
  Listing subdomains about a main domain
  ☆58Updated 7 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 8 years ago
• Cillian-Collins / Recon
  The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…
  ☆15Updated 7 years ago
• visualbasic6 / google-drive-infoleak
  patched information leak leaking full names associated with some email addresses including but not limited to gmail
  ☆36Updated 4 years ago
• krishkribo / Hacking-World-list
  Hacking Wordlist collections for password cracking are attached in the below files
  ☆16Updated 7 years ago
• WeebSec / weebdns
  DNS Enumeration with Asynchronicity
  ☆45Updated 7 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 6 years ago
• Shiva108 / escalationserver
  Escalation Servers and Scripts for Priv Escalation
  ☆18Updated 6 years ago
• evilsocketbr / shodanwave
  Shodanwave - Netwave IP Camera
  ☆18Updated 8 years ago
• NickstaDB / PoC
  Repo for proof of concept exploits and tools.
  ☆56Updated 5 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆38Updated 12 years ago
• raise-isayan / BigIPDiscover
  It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…
  ☆16Updated 2 weeks ago
• DanMcInerney / SMB-reverse-brute
  Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords
  ☆51Updated 8 years ago
• alienwithin / Scripts-Sploits
  A number of scripts POC's and problems solved as pentests move along.
  ☆44Updated last year
• DanMcInerney / smb-autopwn
  Discovers and exploits hosts vulnerable to MS08-067/MS17-010
  ☆42Updated 7 years ago
• n4xh4ck5 / V1D0m
  Enumerate subdomains through Virustotal
  ☆32Updated 6 years ago
• sf197 / hashboy-tool
  a hash query tool
  ☆36Updated 6 years ago