2191 Open source projects that are alternatives of or similar to Blackwidow

Hacking tools

Audit tool to find common vulnerabilities in PHP source code

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Top disclosed reports from HackerOne

No description or website provided.

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

pentest framework

Go Web Application Penetration Test

XSS in pastebin.com and reddit.com via unsanitized markdown output

Cross Origin Resource Sharing MisConfiguration Scanner

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Source code for Hacker101.com - a free online web and mobile security class.

Tool for information gathering, IPReverse, AdminFInder, DNS, WHOIS, SQLi Scanner with google.

my oscp prep collection

A list of useful payloads for Web Application Security and Pentest/CTF

Web path scanner

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

nodejs + express security and performance boilerplate.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

A web crawler (for bug hunting) that gathers more than you can imagine.

Powerfull XSS Scanning and Parameter analysis tool&gem

xWAF 3.0 - Free Web Application Firewall, Open-Source.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

🎯 Command Injection Payload List

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Advanced dork Search & Mass Exploit Scanner

Nuubi Tools (Information-ghatering|Scanner|Recon.)

JAVA 漏洞靶场 (Vulnerability Environment For Java)

Vulnerability Patterns Detector for C# and VB.NET

An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability

Pentest: Subdomains enumeration tool for penetration testers.

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

A fast DOM based XSS vulnerability scanner with simplicity.

Vulners Python API wrapper

Network footprint scanner platform. Discover domains and run your custom checks periodically.

OSINT

🕷 A lightning fast multithreaded network scanner framework with modules.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

OneForAll是一款功能强大的子域收集工具

高效强大扫描分析iOS和Android项目里没有使用的类Mac开源工具，清理项目垃圾类，让项目结构干净清爽，升级维护得心应手. Efficient and powerful scanning analysis iOS and Android project no classes used in Mac open source tools, cleaning rubbish class project, make project structure clean and relaxed, upgrade maintenance

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

swiss army knife for hackers

Maryam: Open-source Intelligence(OSINT) Framework

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

WEB SERVICE SECURITY ASSESSMENT TOOL

massive SQL injection vulnerability scanner

hacker, ready for more of our story ! 🚀

Sifter aims to be a fully loaded Op Centre for Pentesters

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

OSINT Swiss Army Knife

Intelligence tool but without API key

HostHunter a recon tool for discovering hostnames using OSINT techniques.

The hackers tool belt

织梦全版本漏洞扫描

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

A MongoDB importer and API for Project Sonars DNS datasets

瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf