868 Open source projects that are alternatives of or similar to Brutedet

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

DNS Subdomain● Brute force ● Web Spider ● Nmap Scan ● etc

Enumeration sub domains(枚举子域名)

Light NodeJS rate limiting and response delaying using Redis - including Express middleware.

Canary: Input Detection and Response

Python 3.5+ DNS asynchronous brute force utility

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

macOS keychain cracking tool

r0ak ("roak") is the Ring 0 Army Knife -- A Command Line Utility To Read/Write/Execute Ring Zero on for Windows 10 Systems

grep rough audit - source code auditing tool

Awesome Object Detection based on handong1587 github: https://handong1587.github.io/deep_learning/2015/10/09/object-detection.html

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

An Active Defense and EDR software to empower Blue Teams

Program to reverse Docker images into Dockerfiles

Awesome PHP Security Resources 🕶🐘🔐

A static analysis security vulnerability scanner for Ruby on Rails applications

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Safety helmet wearing detect dataset, with pretrained model

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Hacking Toolkit

A collection of awesome security hardening guides, tools and other resources

Hardening Ubuntu. Systemd edition.

Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

InQL - A Burp Extension for GraphQL Security Testing

Penetrum LLC opensource security tool list.

Web path scanner

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient

A cross-platform note-taking & target-tracking app for penetration testers.

Awesome Python Security resources 🕶🐍🔐

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

🆕 The Multi-Tool Web Vulnerability Scanner.

convert dataset to coco/voc format

A python library built to empower developers to build applications and systems with self-contained Computer Vision capabilities

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.

All About the GANs(Generative Adversarial Networks) - Summarized lists for GAN

Exploit Pack -The next generation exploit framework

A repository for using osquery for incident detection and response

Tensorflow implementation of YOLO, including training and test phase.

Daemon to ban hosts that cause multiple authentication errors

emba - An analyzer for Linux-based firmware of embedded devices.

Algorithms for outlier and adversarial instance detection, concept drift and metrics.

📚Translate the distinct technical blogs. Please star or watch. Welcome to join me.

Open-Source Security Architecture | 开源安全架构

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

JAVA安全SDK及编码规范

Real-time object detection on Android using the YOLO network with TensorFlow

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

a pytorch lib with state-of-the-art architectures, pretrained models and real-time updated results

A web front-end for password cracking and analytics

Terraform module to set up your AWS account with the secure baseline configuration based on CIS Amazon Web Services Foundations and AWS Foundational Security Best Practices.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

A mobilenet SSD based face detector, powered by tensorflow object detection api, trained by WIDERFACE dataset.