563 Open source projects that are alternatives of or similar to Awesome Nmap Grep

A swiss army knife for pentesting networks

跨平台大型网络端口扫描器(支持批量A段/B段/C段/IP列表(TXT)/端口列表,Banner识别比S扫描器加强版更准)

mXtract - Memory Extractor & Analyzer

A unified console to perform the "kill chain" stages of attacks.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Fast Modular Web Interfaces Bruteforcer

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Python network worm that spreads on the local network and gives the attacker control of these machines.

All MITM attacks in one place.

Nmap custom probes for better detecting SAP services

Attack Surface Management Platform | Sn1perSecurity LLC

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

Useful tools and scripts during Penetration Testing engagements

DeepSea Phishing Gear

Open source pre-operation C2 server based on python and powershell

Docker images for infosec tools

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in their official BApp Store).

Dradis Framework: Colllaboration and reporting for IT Security teams

🔐 Docker Container for Penetration Testing & Security

Credential stuffing engine built for security professionals

Automation for internal Windows Penetrationtest / AD-Security

Automatically Launch Google Hacking Queries Against A Target Domain

An evil RAT (Remote Administration Tool) for macOS / OS X.

Intelligence tool but without API key

golang版高性能端口扫描工具

DNS Rebinding Exploitation Framework

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Quickly analyze and reverse engineer Android packages

A Python3 based single-file subdomain enumerator

A curated list of awesome privilege escalation

Encoder to bypass WAF filters using XOR operations

Extract endpoints from APK files

Reverse Shell as a Service

Sifter aims to be a fully loaded Op Centre for Pentesters

The cheat sheet about Java Deserialization vulnerabilities

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

BlackRAT - Java Based Remote Administrator Tool

🚀 Fast Port Scanner 🚀

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Exploit pack for pentesters and ethical hackers.

Automatic SQL injection and database takeover tool

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

The Collective. A repo for a collection of red-team projects found mostly on Github.

Open-Source Ransomware As A Service for Linux, MacOS and Windows

Network protocol auditing framework

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

The Last Web Recon Tool You'll Need

🔪 Leak git repositories from misconfigured websites

Python3 tool to perform password spraying using RDP

Relational database brute force and post exploitation tool for MySQL and MSSQL

Some of my security stuff and vulnerabilities. Nothing advanced. More to come.

a rusty `scanf` (`scan!`) and inverse of `print!` (`read!`)

A Hashcat wrapper for distributed hashcracking

SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.

A set of recipes useful in pentesting and red teaming scenarios

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

Hawkeye filesystem analysis tool