460 Open source projects that are alternatives of or similar to Apk Medit

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.

OSS Vulnerability Scanner for Windows Platform

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

A binary analysis framework

myscan 被动扫描

An OSINT Metadata analyzing tool that filters through tags and creates reports

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Toolbox containing research notes & PoC code for weaponizing .NET's DLR

👓 Every link ever to Android Developer site.

Python 3.5+ DNS asynchronous brute force utility

DNS-Discovery is a multithreaded subdomain bruteforcer.

A light-weight password manager with a focus on simplicity and security

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

Intel Owl: analyze files, domains, IPs in multiple ways from a single API at scale

PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK

🎯 Command Injection Payload List

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

An application to assist in the organization and prioritization of software security activities.

🔨 Manage your website via terminal

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

Tool made to automate tasks of pentesting.

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Qualys sslabs-scan utility in a tiny docker image

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Micro-framework for rapid development of reusable security tools

snopf USB password token

Linux命令转发记录

Exploit management framework

Secure, human-friendly, cross-platform secrets and config.

A collection of awesome security hardening guides, tools and other resources

Advanced Netstat Using Python For Windows

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

outis is a custom Remote Administration Tool (RAT) or something like that. It was build to support various transport methods (like DNS) and platforms (like Powershell).

Prowler is a security tool to perform AWS security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 200 controls covering CIS, ISO27001, GDPR, HIPAA, SOC2, ENS and other security frameworks.

An ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)

A repository for maintaining lists of things like malicious URLs, fake token addresses, and so forth. We love lists.

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Search for Directory Traversal Vulnerabilities

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Bandit is a tool designed to find common security issues in Python code.

🚿 Sanitising your documents, one threat at a time. — Content Disarm & Reconstruction Software

RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities

Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki

Penetrum LLC opensource security tool list.

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

Radare2 and Frida better together.

emba - An analyzer for Linux-based firmware of embedded devices.

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)