Alternatives and similar repositories for awesome-hacking-lists

Users that are interested in awesome-hacking-lists are comparing it to the libraries listed below

• Adminisme / ServerScan

  View on GitHub
  ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
  ☆1,632Jun 16, 2024Updated last year
• xiaoZ-hc / redtool

  View on GitHub
  日常积累的一些红队工具及自己写的脚本，更偏向于一些diy的好用的工具，并不是一些比较常用的msf/awvs/xray这种
  ☆1,413Aug 18, 2024Updated last year
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• insightglacier / Dictionary-Of-Pentesting

  View on GitHub
  Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
  ☆2,028Jul 21, 2023Updated 2 years ago
• chriskaliX / AD-Pentest-Notes

  View on GitHub
  用于记录内网渗透(域渗透)学习 :-)
  ☆1,235Nov 9, 2020Updated 5 years ago
• SkewwG / domainTools

  View on GitHub
  内网域渗透小工具
  ☆734Apr 20, 2021Updated 4 years ago
• xiaoy-sec / Pentest_Note

  View on GitHub
  渗透测试常规操作记录
  ☆4,041May 22, 2023Updated 2 years ago
• inbug-team / InScan

  View on GitHub
  边界打点后的自动化渗透工具
  ☆1,891Jul 19, 2021Updated 4 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,801Feb 7, 2020Updated 6 years ago
• ffffffff0x / AboutSecurity

  View on GitHub
  Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
  ☆1,072Jan 9, 2023Updated 3 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• taielab / Taie-Bugbounty-killer

  View on GitHub
  挖掘国内外漏洞平台必备的自动化捡钱赏金技巧，看了并去做了捡钱如喝水。
  ☆423Nov 17, 2020Updated 5 years ago
• lengjibo / RedTeamTools

  View on GitHub
  记录自己编写、修改的部分工具
  ☆1,462Oct 19, 2025Updated 3 months ago
• Airboi / bypass-av-note

  View on GitHub
  免杀技术大杂烩---乱拳也打不死老师傅
  ☆1,095Mar 29, 2021Updated 4 years ago
• dr0op / CrossNet-Beta

  View on GitHub
  红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
  ☆366Jun 19, 2024Updated last year
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,010May 21, 2024Updated last year
• dr0op / shiro-550-with-NoCC

  View on GitHub
  Shiro-550 不依赖CC链利用工具
  ☆451Jun 19, 2024Updated last year
• Ascotbe / Medusa

  View on GitHub
  Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中
  ☆2,220Mar 3, 2024Updated last year
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,116Jan 23, 2026Updated 3 weeks ago
• Paper-Pen / GatherInfo

  View on GitHub
  信息收集 OR 信息搜集
  ☆927Mar 13, 2024Updated last year
• LandGrey / webshell-detect-bypass

  View on GitHub
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,732Nov 15, 2020Updated 5 years ago
• Mr-xn / Penetration_Testing_POC

  View on GitHub
  渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell co…
  ☆7,217Updated this week
• ffffffff0x / 1earn

  View on GitHub
  ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
  ☆5,647Jun 6, 2024Updated last year
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,432Sep 29, 2021Updated 4 years ago
• taielab / Taie-AutoPhishing

  View on GitHub
  剑指钓鱼基建快速部署自动化
  ☆304Mar 29, 2021Updated 4 years ago
• r0eXpeR / supplier

  View on GitHub
  主流供应商的一些攻击性漏洞汇总
  ☆807Nov 8, 2021Updated 4 years ago
• evilc0deooo / PentesterSpecialDict

  View on GitHub
  构建优化高效的渗透 fuzz 字典合集
  ☆1,883Jun 17, 2025Updated 7 months ago
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,459Jun 17, 2024Updated last year
• zer0yu / Awesome-CobaltStrike

  View on GitHub
  List of Awesome CobaltStrike Resources
  ☆4,384Sep 20, 2023Updated 2 years ago
• xiecat / goblin

  View on GitHub
  一款适用于红蓝对抗中的仿真钓鱼系统
  ☆1,535May 30, 2023Updated 2 years ago
• Echocipher / AUTO-EARN

  View on GitHub
  一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
  ☆735Dec 8, 2022Updated 3 years ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,199Jul 25, 2023Updated 2 years ago
• hayasec / 360SafeBrowsergetpass

  View on GitHub
  这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
  ☆638Apr 4, 2021Updated 4 years ago
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,689Mar 14, 2024Updated last year
• Lucifer1993 / SatanSword

  View on GitHub
  红队综合渗透框架
  ☆1,179May 11, 2023Updated 2 years ago
• gh0stkey / Web-Fuzzing-Box

  View on GitHub
  Web Fuzzing Box - Web 模糊测试字典与一些Payloads
  ☆2,442May 28, 2025Updated 8 months ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,822Oct 20, 2023Updated 2 years ago
• hudunkey / Red-Team-links

  View on GitHub
  2019年红队资源链接，资源不是本人整理出来，来自互联网，因为流传的少，特意在此做个备份，做个分享。
  ☆839Aug 24, 2019Updated 6 years ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year