738 Open source projects that are alternatives of or similar to Astra

ConPtyShell - Fully Interactive Reverse Shell for Windows

Burp extension to passively scan for applications revealing software version numbers

CCMenu is a Mac application to monitor continuous integration servers.

🎬 MovieApp is a Flutter application built to demonstrate the use of modern development tools with best practices implementation like Modularization, BLoC, Dependency Injection, Dynamic Theme, Cache, Shimmer, Testing, Flavor, CI/CD, etc.

Source repository of Qodana Help

Small tool to capture packets from wlan devices.

Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"

GitBook: OSCP RoadMap

A MongoDB importer and API for Project Sonars DNS datasets

An HTTP/HTTPS intercept proxy written in Go.

🙃 Reverse Shell Cheat Sheet 🙃

Tensor - Comprehensive web-based automation framework and Centralized infrastructure management platform

OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. [email protected]

The OWASP Vulnerable Web Applications Directory project (VWAD) is a comprehensive and well maintained registry of all known vulnerable web applications currently available.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

The Kubernetes Continuous Integration & Delivery Platform (CI/CD) 🔄

A webshell framework for penetration testers.

An open source build platform designed for continuous delivery.

The Collective. A repo for a collection of red-team projects found mostly on Github.

The SOC Analysts all-in-one CLI tool to automate and speed up workflow.

OWASP ZAP Add-ons

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Penetration Testing Platform

Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.

Free Security and Hacking eBooks

Random IPv6 - circumvents restrictive IP address-based filter and blocking rules

Azure DevOps extension adding tools to build and deploy Unity 3D projects using Azure Pipelines

Top 100 Hacking & Security E-Books (Free Download)

Collection of tips, tools and tutorials around infosec

Subdomain enumeration through various techniques

Awesome hacking is an awesome collection of hacking tools.

YARA malware query accelerator (web frontend)

A default credential scanner.

Overlord - Red Teaming Infrastructure Automation

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

SIde-Channel Analysis toolKit: embedded security evaluation tools

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Azure DevOps Designer-to-YAML Pipeline CLI CodeGen Tool

In-depth Attack Surface Mapping and Asset Discovery

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A Python-powered exploitation framework and botnet.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

( MacOs ) 一键打包部署 android/ios APP到各个测试平台和App Store。ci/cd神器，拒绝繁琐

Helps you continuously monitor and fix common security vulnerabilities in your Django application.

fsociety Hacking Tools Pack – A Penetration Testing Framework

SyntheticSun is a defense-in-depth security automation and monitoring framework which utilizes threat intelligence, machine learning, managed AWS security services and, serverless technologies to continuously prevent, detect and respond to threats.

wooyun public information backup

Post-Exploitation Framework

A curated list of resources for learning about application security

A GitHub action to create a pull request for changes to your repository in the actions workspace

GUI based offensive penetration testing tool (Open Source)

Example real time quiz application with .NET Core, React, DDD, Event Sourcing, Docker and built-in infrastructure for CI/CD with k8s, jenkins and helm

Password wordlist generator using song lyrics for targeted bruteforce audits / attacks. Useful for penetration testing or security research.

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

All releases of the security research group (a.k.a. hackers) The Hacker's Choice