880 Open source projects that are alternatives of or similar to Arl

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

OneForAll是一款功能强大的子域收集工具

Web Application recon automation

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

This repository created for personal use and added tools from my latest blog post.

An automated target reconnaissance pipeline.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Open Redirect scanner - (out of date)

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

An automated approach to performing recon for bug bounty hunting and penetration testing.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Yet Another PHP Shell - The most complete PHP reverse shell

Search for Directory Traversal Vulnerabilities

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

network visualization & vulnerability management/reporting

Generates combination of domain names from the provided input.

⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.

Attack Surface Management Platform | Sn1perSecurity LLC

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

红队综合渗透框架

A curated list of various bug bounty tools

Awesome cloud enumerator

Extract server and IP address information from Browser SSRF

Automation for internal Windows Penetrationtest / AD-Security

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Hacking Toolkit

A REST API security testing framework.

Next generation web scanner

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Python 3.5+ DNS asynchronous brute force utility

👻Impost3r -- A linux password thief

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Web path scanner

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

Making Favicon.ico based Recon Great again !

C2/post-exploitation framework

A collection of awesome one-liner scripts especially for bug bounty tips.

Exploit Pack -The next generation exploit framework

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

a recon tool that allows searching on URLs that are exposed via shortener services

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

The Swiss Army knife for automated Web Application Testing

Find exploit tool

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Reconness Agents Script

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.