622 Open source projects that are alternatives of or similar to apkizer

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

E-mails, subdomains and names Harvester - OSINT

List of Awesome Asset Discovery Resources

Web Application recon automation

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

A collection of awesome one-liner scripts especially for bug bounty tips.

A tool to hunt for publicly accessible DigitalOcean Spaces

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

👀 Some of my favorite OSINT tools.

Python library and CLI for the Bug Bounty Recon API

Intelligence and Reconnaissance Package/Bundle installer.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Recsech is a tool for doing Footprinting and Reconnaissance on the target web. Recsech collects information such as DNS Information, Sub Domains, HoneySpot Detected, Subdomain takeovers, Reconnaissance On Github and much more you can see in Features in tools .

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

OSINT

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A fast http and https prober, to check which URLs are alive

CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.

A passive subdomain finder

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

Automated Web Recon Shell Scripts

Do some quick reconnaissance on a domain-based web-application

goverview - Get an overview of the list of URLs

Tool to automate recon

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

all manner of wordlists

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

Simultaneously execute various subdomain enumeration tools and aggregate results.

One way to continuously monitor sensitive information that could be exposed on Github

apkpure.com apk downloader

Enumerate information from NTLM authentication enabled web endpoints 🔎

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

🌕 myPlanet android app reads data from 🌎 for offline use as well as it collect usage data and sends them back to the Planet.

Go scripts for finding sensitive data like API key / some keywords in the github repository

A collection of some of my scripts

The repository host the API for the ML model via FastAPI, Flask and contains android app development files using KivyMD.

Bug's feed is a local hosted portal where you can search for the latest news, videos, CVEs, vulnerabilities...

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)

Get details and download apps from https://play.google.com by emulating an Android (Nexus 5X) device by default. For a rust version of this library check out https://github.com/dweinstein/rs-google-play

Extract endpoints marked as disallow in robots files to generate wordlists.

Prism is a beautiful open-source wallpapers app for Android. It is built with Dart on top of Google's Flutter Framework.

Apkmod can decompile, recompile, sign APK, and bind the payload with any legit APP

REST API backend for Reconmap

🐺 Command-line application and golang client library for hunter.io

Toolset for detecting reflected xss in websites

Fdroid repository manager fetching apps from Play Store

Android差分补丁库，通过native层合并APK，实现增量更新升级，让你更新的APK更小。

An Android Application Installer for Windows

🐞Android crack tool For Mac

Send notifications on different channels such as Slack, Telegram, Discord etc.

基于frida的安卓hook框架，提供了很多frida自身不支持的功能，将hook安卓变成简单便捷，人人都会的事情

Mobile penetration testing android & iOS command cheatsheet

Really quickly build APKs on handheld device (smartphone or tablet) in Amazon, Android, Chromebook and Windows📲 See https://buildapks.github.io/docsBuildAPKs/setup to start building APKs.

Simple Python tool to check if there is an Office 365 instance linked to a domain.

APK/DEX detector for Windows, Linux and MacOS.

Find endpoints on GitHub.

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! 🍻

Powerful yet easy to use APK editor for PC and Mac.

Android app 增量更新