1911 Open source projects that are alternatives of or similar to Api

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

A collection of my quick and dirty scripts for vulnerability POC and detections

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

The Correlated CVE Vulnerability And Threat Intelligence Database API

Open Vulnerability Assessment Scanner - Scanner for Greenbone Vulnerability Management (GVM)

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

A Penetration Testing Framework, Information gathering tool & Website Vulnerability Scanner

🔥 An Exploit framework for Web Vulnerabilities written in Python

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Exploitation Framework for Embedded Devices

hacker, ready for more of our story ! 🚀

Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.

A web crawler (for bug hunting) that gathers more than you can imagine.

分布式资产安全扫描核心管理系统(弱口令扫描，漏洞扫描)

Original Automated CVE Checking Tool

Adobe Experience Manager Vulnerability Scanner

A static binary vulnerability scanner

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

List of real-world threats against endpoint protection software

Advanced vulnerability scanning with Nmap NSE

Some of my public exploits

Docker Scan is a Command Line Interface to run vulnerability detection on your Dockerfiles and Docker images

#INFILTRATE20 raptor's party pack

PatrowlHears - Vulnerability Intelligence Center / Exploits

🆕 The Multi-Tool Web Vulnerability Scanner.

RouterOS Security Research Tooling and Proof of Concepts

Auto Scanning to SSL Vulnerability

The Web Exploit Detector is a Node.js application used to detect possible infections, malicious code and suspicious files in web hosting environments

It's a simple tool for test vulnerability shellshock

Advanced Web Browser Fingerprinting

Vulnerability Database | huntr.dev

SQL Injection Payload List

GradeJS analyzes production Webpack bundles without having access to the source code of a website. Instantly see vulnerabilities, outdated packages, and more just by entering a web application URL.

A list of resources in different fields of Computer Science (multiple languages)

Log4j Vulnerability Scanner for Windows

🕵️‍♀️ Mondoo Cloud-Native Security & Vulnerability Risk Management

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Fastest filesystem scanner for log4shell (CVE-2021-44228, CVE-2021-45046) and other vulnerable (CVE-2017-5645, CVE-2019-17571, CVE-2022-23305, CVE-2022-23307 ... ) instances of log4j library. Excellent performance and low memory footprint.

👨‍💻 A work-in-progress web services mass scanner written in Rust

(deprecated) Android application vulnerability analysis and Android pentest tool

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Web Application Security Scanner Framework

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Official native Python client for the Vertica Analytics Database.

The complete REPL & CLI for managing LevelDB instances.