2274 Open source projects that are alternatives of or similar to Arissploit

Agent scanner for vulners.com

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

CMS auto detect and exploit.

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

Botnet targeting Windows machines written entirely in Python & open source security project.

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Android Kernel Exploitation

Fast and customizable vulnerability scanner based on simple YAML based DSL.

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Challenges and vulnerabilities exploitation.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Advisories, proof of concept files and exploits that have been made public by @pedrib.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

NERVE Continuous Vulnerability Scanner

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

Apache Shiro 反序列化漏洞检测与利用工具

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

WPScan rewritten in Python + some WPSeku ideas

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A vulnerability scanner for container images and filesystems

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

kernel privilege escalation enumeration and exploitation framework

A collection where my current and future writeups for exploits/CTF will go

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

mXtract - Memory Extractor & Analyzer

Notes for taking the OSCP in 2097. Read in book form on GitBook

Linux Binary Exploitation

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

Advanced dork Search & Mass Exploit Scanner

Open-Source Security Architecture | 开源安全架构

System Optimizer and Monitoring, Security Auditing, Vulnerability scanner for Linux, macOS, and UNIX-based systems

Collection of resources for my preparation to take the OSEE certification.

Automatic SSRF fuzzer and exploitation tool

hack tools

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

SQL Vulnerability Scanner

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Micro-framework for rapid development of reusable security tools

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Reverse Shell as a Service

The Offensive Manual Web Application Penetration Testing Framework.