880 Open source projects that are alternatives of or similar to Arl

Alcide Kubernetes Audit Log Analyzer - Alcide kAudit

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Program to reverse Docker images into Dockerfiles

A checklist for staying safe on the internet

a tool to analyze filesystem images for security

The format of various s3 buckets is convert in one format. for bugbounty and security testing.

A tool to update your project's dependencies on GitHub. Runs on pyup.io, comes with a command line interface.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Links for the OSINT Team

Adversary Simulation Framework

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

The Last Web Recon Tool You'll Need

Toolbox containing research notes & PoC code for weaponizing .NET's DLR

Penetration Testing Platform

A set of functions implemented using lambda-cfn to monitor an organization's AWS infrastructure for best practices, security and compliance.

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Python3 tool to perform password spraying using RDP

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

A light-weight password manager with a focus on simplicity and security

@viva_las_venus -- This project is to learn, teach and awareness about privacy and security in the digital life, to build a better, more open and more inclusive world together!

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

🍿 The perfect Checklist Website for meticulous developers.

A fast HTTP Response status checker implemented in Python3

A cross-platform note-taking & target-tracking app for penetration testers.

Identify vulnerabilities in running containers, images, hosts and repositories

Generalized proof of concept tool which can be used for drop-in bruteforce protection when needed.

Web application vulnerability scanner

This ansible role gets information from an AWS VPC and generate a graphical representation of security groups

Awesome Ruby Security resources

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

differer finds how URLs are parsed by different languages in order to help bug hunters break filters

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

A repository of sysmon configuration modules

Secure, Unified, Powerful and Extensible Rust Android Analyzer

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Awesome PHP Security Resources 🕶🐘🔐

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

My simple Swiss Army knife for http/https troubleshooting and profiling.

A security monitoring solution for Kubernetes

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Gospider - Fast web spider written in Go

A tool to identify and exploit sudo rules' misconfigurations and vulnerabilities within sudo for linux privilege escalation.

Tool to predict attacker groups from the techniques and software used

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

Mining parameters from dark corners of Web Archives

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

iOS/macOS/Linux Remote Administration Tool

Explore Indicators of Compromise Automatically

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.

🎯 Command Injection Payload List

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Security Tool to Look For Interesting Files in S3 Buckets

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.