775 Open source projects that are alternatives of or similar to Awsbucketdump

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A list of web application security

Web App Pen Tester (Web Interface)

A collection of resources I'm using while working toward the OSCP

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.

Some files for bruteforcing certain things.

AWS tutorial code.

Discover Your Attack Surface!

VOIP Security Audit Framework

A tool to automate penetration tests

domhttpx is a google search engine dorker with HTTP toolkit built with python, can make it easier for you to find many URLs/IPs at once with fast time.

Modern tactical exploitation toolkit.

HTTP fuzzer engine security oriented

平常看到好的渗透hacking工具和多领域效率工具的集合

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

A simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.

A fast DOM based XSS vulnerability scanner with simplicity.

Kubernetes Scanner

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Little tool made in python to create payloads for Linux, Windows and OSX with unique handler

Android Apps, Roms and Platforms for Pentesting

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Do some quick reconnaissance on a domain-based web-application

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

A list of interesting payloads, tips and tricks for bug bounty hunters.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Oracle Database Penetration Testing Reference (10g/11g)

Super fast, on-demand and on-the-fly, image processing.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Open Redirect scanner - (out of date)

🎯 XML External Entity (XXE) Injection Payload List

Subdomain discovery using the power of 'The Rapid7 Project Sonar datasets'

Tool Information Gathering Write By Python.

In-depth Attack Surface Mapping and Asset Discovery

Scripts usados en mi formación de Offensive Security por medio de la suscripción Learn Unlimited

The fastest dork scanner written in Go.

Modified Nuclei Templates Version to FUZZ Host Header

Automated Penetration Testing Framework

A friendly Toolkit for Beginner CTF players

A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.

My last 10 year's material collection on offensive & defensive security, GRC, risk management, technical security guidelines and much more.

Automated Red Team Infrastructure deployement using Docker

A Powershell client for dnscat2, an encrypted DNS command and control tool.

List of every possible vulnerabilities in computer security.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

A shot-for-shot remake of the Google Login Page.

🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Light weight, extensible configuration management library for Go. Built in support for JSON, TOML, YAML, env, command line, file, S3 etc. Alternative to viper.

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

a Go code to detect leaks in JS files via regex patterns

Simple and fast implementation of enumerations with native PHP

Exports Prometheus metrics about S3 buckets and objects

Redundant Array of Distributed Independent Objectstores in short RADIO performs synchronous mirroring, erasure coding across multiple object stores

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.