320 Open source projects that are alternatives of or similar to anewer

TermiJack surreptitiously hijacks standard streams (stdin, stdout, and/or stderr) from an already running process.

Portable Unix shell command 'tee', with some extras - read from standard input and write to standard output and files

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

sub domain wild card filtering tool

Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

commonspeak2 subdomains wordlist generated daily **DEPRECATED** The author(s) of commonspeak2 maintain an official repo with more lists. Please use it instead: https://github.com/assetnote/wordlists

DNS hijacking via dead records automation tool

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

This document proposes a way of standardising the structure, language, and grammar used in security policies.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.

HTTP fuzzer engine security oriented

Host Header Injection Checker

Running nuclei Continuously

A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title

My personal bug bounty toolkit.

Simultaneously execute various subdomain enumeration tools and aggregate results.

Modified Nuclei Templates Version to FUZZ Host Header

Pentesting/Bugbounty Dockerfiles.

Full Nuclei automation script with logic explanation.

Putting the power of an 8-cylinder engine under the hood of DOS batch files.

SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibility of manual testing with many powerful evasion techniques.

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

Scan secrets from Continuous Integration Build Logs

Para pencari bug / celah kemanan bisa bergabung.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

Nuubi Tools (Information-ghatering|Scanner|Recon.)

Kubernetes Scanner

VulWebaju is a platform that automates setting up your pen-testing environment for learning purposes.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

An efficient multi-threaded DNS resolver validator

Python Bluetooth low energy observer example for OMRON Environment Sensor (2JCIE-BL01)

Tips and Tutorials for Bug Bounty and also Penetration Tests.

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

Simple vueJS based command generator which I developed in order to learn vueJS a little bit more.

This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.

Show Me A Graph - Command Line Graphing

One-click installer for Frida and Burp certs for SSL Pinning bypass

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Domain availbility checker

XSS Payload without Anything.

The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.

Astra is a tool to find URLs and secrets inside a webpage/files

Leverage the ability of Terraform and AWS or GCP to distribute large security scans across numerous cloud instances.

Signatures for jaeles scanner by @j3ssie

Split STDIN stream and execute specified command every N lines/seconds.

Collection grep patterns for Tom Hudson a.k.a Tomnomnom tools namely gf

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

goverview - Get an overview of the list of URLs

🐰 Managing command snippets for hackers/bug bounty hunters. with pet.

A simple on-target system test framework for Linux

The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.

XSS in pastebin.com and reddit.com via unsanitized markdown output

Reconness Agents Script

No description or website provided.