738 Open source projects that are alternatives of or similar to Astra

Drone plugin for managing deployments and services on Google App Engine (GAE)

Don't let buffer overflows overflow your mind

Hacking tools

Powerful Visual Subdomain Enumeration at the Click of a Mouse

SSH man-in-the-middle tool

wcm.io Jenkins Pipeline Library for CI/CD

A collection of manifests that will create pods with elevated privileges.

The Firmware Security Testing Methodology (FSTM) is composed of nine stages tailored to enable security researchers, software developers, consultants, hobbyists, and Information Security professionals with conducting firmware security assessments.

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

Git repository version tagging tool

🎬 MovieApp is a Flutter application built to demonstrate the use of modern development tools with best practices implementation like Modularization, BLoC, Dependency Injection, Dynamic Theme, Cache, Shimmer, Testing, Flavor, CI/CD, etc.

GitBook: OSCP RoadMap

Tensor - Comprehensive web-based automation framework and Centralized infrastructure management platform

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

The Kubernetes Continuous Integration & Delivery Platform (CI/CD) 🔄

The Collective. A repo for a collection of red-team projects found mostly on Github.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Azure DevOps extension adding tools to build and deploy Unity 3D projects using Azure Pipelines

Awesome hacking is an awesome collection of hacking tools.

🔪 Leak git repositories from misconfigured websites

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

In-depth Attack Surface Mapping and Asset Discovery

Open source all-in-one CLI tool to semi-automate pentesting.

Ethereum recon and exploitation tool.

A simple web app that helps developers understand the ASVS requirements.

( MacOs ) 一键打包部署 android/ios APP到各个测试平台和App Store。ci/cd神器，拒绝繁琐

wooyun public information backup

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

Docker builder builds Docker images from a friendly config file.

A tool to test security of json web token

Postman COVID-19 API Resource Center—API collections to help in the COVID-19 fight.

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

An advanced graphical search engine for Exploit-DB

GitBook markdown content for the eBook "Pwning OWASP Juice Shop"

Security automation content in SCAP, OSCAL, Bash, Ansible, and other formats

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Automated NoSQL database enumeration and web application exploitation tool.

Detect hidden files and text in images

🔄 A collection of mitmproxy inline scripts

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

A collection of various awesome lists for hackers, pentesters and security researchers

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

Explore Indicators of Compromise Automatically

Runs Flutter integration tests on real devices in cloud.

Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.org https://twitter.com/owtfp

A build flow tool for Docker.

Trigram database written in C++, suited for malware indexing

unix SSH post-exploitation 1337 tool

A collection of electronic hacker magazines carefully curated over the years from multiple sources

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Sqreen's Application Security Management for the Go language

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform

All-in-one tool for managing vulnerability reports from AppSec pipelines

OpenFaaS Kubernetes cluster state management with FluxCD

A solution to help you build automation and gitops in your Apache Kafka deployments. The Kafka gitops!

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

Work in progress...