918 Open source projects that are alternatives of or similar to Blazy

Web path scanner

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Ladon for Cobalt Strike, Large Network Penetration Scanner, vulnerability / exploit / detection / MS17010 / password/brute-force/psexec/atexec/sshexec/webshell/smbexec/netcat/osscan/netscan/struts2Poc/weblogicExp

Common problems of dynamic programming methods and techniques, including prerequisites, for competitive programmers.

Password lists with top passwords to optimize bruteforce attacks

pentest framework

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

OWASP WEB Directory Scanner

In progress rough solutions to bWAPP / bee-box

simple discord nitro code generator and checker written in c#

A simple SSH bruteforce script targeting (not necessarily) Raspbian devices.

Instagram bruteforce tool

massive SQL injection vulnerability scanner

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Automated NoSQL database enumeration and web application exploitation tool.

Hacker tools on Go (Golang)

generates weak passwords based on current date

🛅 Passwords using personal information

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

bruteforcing gmail (TLS/SSL)

Automated Bitcoin wallet generator that with mnemonic and passphrases bruteforces wallet addresses

CloudFlare Checker written in Go

Solutions and write-ups from security-based competitions also known as Capture The Flag competition

hydra

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

Automated WPA/WPA2 PSK attack tool.

DNS Sub-domain brute forcer, in Python + gevent

An SNMPv3 User Enumerator and Attack tool

yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage

Exploitation Framework for Embedded Devices

Pentest Tools Framework is a database of exploits, Scanners and tools for penetration testing. Pentest is a powerful framework includes a lot of tools for beginners. You can explore kernel vulnerabilities, network vulnerabilities

Wordlist for content(directory) bruteforce discovering with Burp or dirsearch

phpMyAdmin Authentication Bruteforce Tool

An automated bitcoin wallet collider that brute forces random wallet addresses

Top disclosed reports from HackerOne

http interceptor to hoomanize cloudflare requests

Powerful mutable web directory fuzzer to bruteforce existing and/or hidden files or directories.

Proof -Of-Concept Brute Force Login on a web-site with a good dictionary of words

Instagram multi-bruteforce Platfrom

Automated brute-forcing attack tool.

A Deliberately Insecure Web Application

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Simple directory brute-force tool written with python.

List of every possible vulnerabilities in computer security.

No description or website provided.

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

Network Security Vulnerability Scanner

w3af: web application attack and audit framework, the open source web vulnerability scanner.

SocialBox is a Bruteforce Attack Framework [ Facebook , Gmail , Instagram ,Twitter ] , Coded By Belahsan Ouerghi Edit By init__0 for termux on android

Simple HS256 JWT token brute force cracker

Automatic Enumeration Tool based in Open Source tools

(Doesn't work anymore)

A powerful and useful hacker dictionary builder for a brute-force attack

Instagram Brute Forcer

Web Application Security Scanner Framework

一款功能强大的漏洞扫描器，子域名爆破使用aioDNS，asyncio异步快速扫描，覆盖目标全方位资产进行批量漏洞扫描，中间件信息收集，自动收集ip代理，探测Waf信息时自动使用来保护本机真实Ip，在本机Ip被Waf杀死后，自动切换代理Ip进行扫描，Waf信息收集(国内外100+款waf信息)包括安全狗，云锁，阿里云，云盾，腾讯云等，提供部分已知waf bypass 方案，中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)，支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能

Konan - Advanced Web Application Dir Scanner