2763 Open source projects that are alternatives of or similar to Awesome Mobile Security

Attack Surface Management Platform | Sn1perSecurity LLC

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

mXtract - Memory Extractor & Analyzer

👻Stowaway -- Multi-hop Proxy Tool for pentesters

The all-in-one Red Team extension for Web Pentester 🛠

🚀 Fast Port Scanner 🚀

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Hacking Toolkit

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

🎯 SQL Injection Payload List

Exploit Pack -The next generation exploit framework

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

记录自己编写、修改的部分工具

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Dark Web OSINT Tool

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

(Not actively maintained, use DRV3-Sharp) Tools for extracting and re-injecting files for Danganronpa V3 for PC.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

A collection of hacking / penetration testing resources to make you better!

Program to reverse Docker images into Dockerfiles

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

A note-taking macOS app for penetration-testers.

无状态子域名爆破工具

This repository contains some of the executables that I've cracked.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Find web directories without bruteforce

做redteam时使用，修改自Ridter的https://github.com/Ridter/Intranet_Penetration_Tips

Automatically brute force all services running on a target.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

A simple keylogger for Windows, Linux and Mac

websocket-connection-smuggler

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Dump exposed HTTP .git fast

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

📚 Flutter Guide on becoming a Master Flutterista

It's a simple tool for test vulnerability shellshock

Hand-crafted Frida examples

A binary analysis framework

Ferramenta para quebrar senhas administrativas de roteadores Wireless, routers, switches e outras plataformas de gestão de serviços de rede autenticados.

Rust code to show how hooking in rust with a dll works.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

📡 A python program to create a fake AP and sniff data.

A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.

An awesome list that curates the best Flutter libraries, tools, tutorials, articles and more.

The iOS Security Testing Framework

Mikrotik RouterOS (6.x < 6.38.5) exploit kit. Reverse engineered from the "Vault 7" WikiLeaks publication.

ASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

Subdomain Takeover tool written in Go