1420 Open source projects that are alternatives of or similar to Asnlookup

Hawkeye filesystem analysis tool

Awesome Vulnerable Applications

Security Tool to Look For Interesting Files in S3 Buckets

A collection of response templates for invalid bug bounty reports.

Ronin is a Ruby platform for vulnerability research and exploit development. Ronin allows for the rapid development and distribution of code, Exploits or Payloads, Scanners, etc, via Repositories.

A list of interesting payloads, tips and tricks for bug bounty hunters.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

List of Awesome Asset Discovery Resources

A fast http and https prober, to check which URLs are alive

🔺 Red Team Hardware Toolkit 🔺

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

An Infrastructure as Code (IaC) deployment of a small Active Directory pentest lab in the cloud. The deployment simulates a semi-realistic corporate enterprise Active Directory with a DC and endpoints. Purple team goals include blue team detection capabilities and R&D for detection engineering new approaches.

Simple, extensible and powerful enumeration implementation for Laravel.

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

SSRF (Server Side Request Forgery) testing resources

BlackRAT - Java Based Remote Administrator Tool

A social experiment

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

linux动态链接库的注入修改查找工具 A tool for injection, modification and search of linux dynamic link library

Proton Framework is a Windows post-exploitation framework similar to other Windows post-exploitation frameworks. The major difference is that the Proton Framework does most of its operations using Windows Script Host, with compatibility in the core to support a default installation of Windows 2000 with no service packs all the way through Windows 10.

How to prepare for OSCP complete guide

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

bug bounty hunters starter notes

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

🐛 Malware Sinkhole List in various formats

OSINT tool - gets data from services like shodan, censys etc. in one app

Automating Jenkins Hacking using Shodan API

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

Cross-site scripting labs for web application security enthusiasts

VirusTotal Wanna Be - Now with 100% more Hipster

💤 Kick devices off your network by performing an ARP Spoof attack.

Tool made to automate tasks of pentesting.

Scan only once by IP address and reduce scan times with Nmap for large amounts of data.

🔪 Leak git repositories from misconfigured websites

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Single Page Cheatsheet for common MSF Venom One Liners

Responsive Command and Control System

Black Worm Offical Repo

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

bash scripting thing !

Script collection to bypass Network Access Control (NAC, 802.1x)

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Message Queue & Broker Injection tool

Social Network Tabs Wordpress Plugin Vulnerability - CVE-2018-20555

游戏外挂通用框架，快速构建外挂程序。

The best Hacking and PenTesting tools installer on the world

EternalView is an all in one basic information gathering and vulnerability assessment tool

Weaponizing Live CT logs for automated monitoring of assets

OWASP Honeypot, Automated Deception Framework.

An open source batch script based WiFi Passview for Windows!

Repo replaced by cogsec-collaborative/AMITT

WPrecon (WordPress Recon), is a vulnerability recognition tool in CMS Wordpress, developed in Go and with scripts in Lua.

YSF Server Functions

A documentation about how to hack Minecraft servers

Cross Origin Resource Sharing MisConfiguration Scanner

Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]