1010 Open source projects that are alternatives of or similar to Attacking And Auditing Docker Containers And Kubernetes Clusters

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Dradis Framework: Colllaboration and reporting for IT Security teams

Collection of Pentest Notes and Cheatsheets from a lot of repos (SofianeHamlaoui,dostoevsky,mantvydasb,adon90,BriskSec)

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

A simple tool for interacting with OWASP ZAP from the commandline.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Web Content Discovery Tool

Hacking Toolkit

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Semi-automatic OSINT framework and package manager

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is for fun. Just enjoy it \m/

A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in public

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

被动式漏洞扫描系统

Set of tools to audit SIP based VoIP Systems

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

An NFC research toolkit application for Android

A meta-repository to help navigate the many lessons and repos of the Software Carpentry Community

A framework for Backdoor development!

DNS Rebinding Exploitation Framework

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Open source pre-operation C2 server based on python and powershell

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Argon - Dashboard for Bootstrap 4 by Creative Tim

Penetration Testing notes, resources and scripts

Intelligence tool but without API key

Integration of Clair and Docker Registry

ArcSoft Free SDK demo，support ArcFace2.1， ArcFace2.0， ArcFace1.2

电子科技大学资源共享平台, This repository contains the course materials of University of Electronic Science and Technology of China.

Material Kit React Native

mXtract - Memory Extractor & Analyzer

Ghost on Github Pages. Build and deploy Ghost for free in a few minutes.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Quickly analyze and reverse engineer Android packages

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Pentest Report Generator

Handbook of information collection for penetration testing and src

Red Runner, Awesome Platformer Game.

A swiss army knife for pentesting networks

Notes for taking the OSCP in 2097. Read in book form on GitBook

All MITM attacks in one place.

A curated list of awesome privilege escalation

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

🚀 Free resources you may use to promote your next startup

Learn how to bring animation to your web projects

Free programing ebooks

Infect Any Android Device With Virus From Link In Termux

Directory/File, DNS and VHost busting tool written in Go

Fast web fuzzer written in Go

Drag and drop website builder javascript library.

Extract endpoints from APK files

Learning Go Book in mmark

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.