1420 Open source projects that are alternatives of or similar to Asnlookup

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

scan for NTLM directories

Gorsair hacks its way into remote docker containers that expose their APIs

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Hacking Toolkit

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

A collection of various GitHub gists for hackers, pentesters and security researchers

A list of resources for those interested in getting started in bug bounties

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

All about bug bounty (bypasses, payloads, and etc)

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Docker images for infosec tools

🆕 The Multi-Tool Web Vulnerability Scanner.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

🎯 SQL Injection Payload List

Vulnerability Dashboard

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Username enumeration and password spraying tool aimed at Microsoft O365.

Notes about attacking Jenkins servers

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Automatic Service Enumeration Script

Snoop — инструмент разведки на основе открытых данных (OSINT world)

A shell script that automatically performs a series of *NIX enumeration tasks.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

👥😈 Infect a pc with badusb and establish a connection through telegram.

Automated brute-forcing attack tool.

Ladon Network Penetration Scanner for PowerShell, vulnerability / exploit / detection / MS17010/SmbGhost,Brute-Force SMB/IPC/WMI/NBT/SSH/FTP/MSSQL/MYSQL/ORACLE/VNC

websocket-connection-smuggler

A wrapper for Nmap to quickly run network scans

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

Security Tool to Look For Interesting Files in S3 Buckets

A collection of response templates for invalid bug bounty reports.

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

jSQL Injection is a Java application for automatic SQL database injection.

Automatically brute force all services running on a target.

List of Awesome Asset Discovery Resources

A fast http and https prober, to check which URLs are alive

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

The ultimate WinRM shell for hacking/pentesting

Repositório com conteúdo sobre web hacking em português

An OSINT tool to gather information about the real owner of a phone number

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

Open source all-in-one CLI tool to semi-automate pentesting.

Burp Bounty profiles compilation, feel free to contribute!

Subdomain Takeover tool written in Go

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

The Offensive Manual Web Application Penetration Testing Framework.

Pop shells like a master.

Awesome Node.js Security resources