738 Open source projects that are alternatives of or similar to Astra

Erlang port of famous radamsa fuzzzer.

VOIP Security Audit Framework

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

A Tools Session Hijacking And Stealer Local Passcode Telegram Windows

A collection of Dockerfiles for images that can be used to implement Continuous Delivery pipelines for SAP development projects with project "Piper" or any other CD tool.

Drone plugin for managing deployments and services on Google App Engine (GAE)

👀👮🐢🔥Performs a privacy & security check of Windows 10

Don't let buffer overflows overflow your mind

The Mobile Application Security Verification Standard (MASVS) is a standard for mobile app security.

Hacking tools

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

PacBot (Policy as Code Bot)

SSH man-in-the-middle tool

A Terraform module for hosting your own runner for CI/CD on Digital Ocean to run jobs in your GitHub Actions workflows. 🚀

wcm.io Jenkins Pipeline Library for CI/CD

Converts Spring REST Docs cURL snippets to Postman and Insomnia collections

A collection of manifests that will create pods with elevated privileges.

nodejs + express security and performance boilerplate.

The Firmware Security Testing Methodology (FSTM) is composed of nine stages tailored to enable security researchers, software developers, consultants, hobbyists, and Information Security professionals with conducting firmware security assessments.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Content for hackingthe.cloud

Deploy 🚀 to AWS ☁️ with GitHub Actions!

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

A easy guide to Getting Started with DocuSign API's using Postman. Showcases recipes and all REST API endpoints

Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.

Tool to convert Postman collection exports to Api Blueprint documentation

Git repository version tagging tool

Burp extension to passively scan for applications revealing software version numbers

🎬 MovieApp is a Flutter application built to demonstrate the use of modern development tools with best practices implementation like Modularization, BLoC, Dependency Injection, Dynamic Theme, Cache, Shimmer, Testing, Flavor, CI/CD, etc.

Small tool to capture packets from wlan devices.

GitBook: OSCP RoadMap

An HTTP/HTTPS intercept proxy written in Go.

Tensor - Comprehensive web-based automation framework and Centralized infrastructure management platform

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

The Kubernetes Continuous Integration & Delivery Platform (CI/CD) 🔄

An open source build platform designed for continuous delivery.

The Collective. A repo for a collection of red-team projects found mostly on Github.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Azure DevOps extension adding tools to build and deploy Unity 3D projects using Azure Pipelines

Continuous Delivery for Kubernetes

Collection of tips, tools and tutorials around infosec

Awesome hacking is an awesome collection of hacking tools.

A default credential scanner.

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

In-depth Attack Surface Mapping and Asset Discovery

A Python-powered exploitation framework and botnet.

( MacOs ) 一键打包部署 android/ios APP到各个测试平台和App Store。ci/cd神器，拒绝繁琐

fsociety Hacking Tools Pack – A Penetration Testing Framework

wooyun public information backup

Generates the distribution of the fabric8 microservices platform

A list to discover work of red team tooling and methodology for penetration testing and security assessment

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

my oscp prep collection

The OWASP ZAP core project

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.