1067 Open source projects that are alternatives of or similar to Catnip

Integration of Clair and Docker Registry

CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys

Drone pentesting framework console

Open source incident management and response platform.

Discover hidden deepweb pages

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Venom - A Multi-hop Proxy for Penetration Testers

onex is a hacking tool installer and package manager for hackers. Onex is a library of all hacking tools for Termux and other Linux distributions. onex can install any third party tool or any hacking tool for you.

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Attack surface mapping

A fast, simple, recursive content discovery tool written in Rust.

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Automated Mass Exploiter

An ncurses-based Tox client (please make pull requests on the development fork: https://github.com/toktok/toxic)

🐞 Primitive Erlang Security Tool

Open Source Tripwire®

An Unsupervised Graph-based Toolbox for Fraud Detection

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

自己收集整理自用的字典

Apache Solr Injection Research

Find web directories without bruteforce

mXtract - Memory Extractor & Analyzer

Script collection to bypass Network Access Control (NAC, 802.1x)

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

Openwrt 18.06.5 featured with the Exein's security framework

A collection of public offensive and defensive security related scripts for InfoSec students.

A Machine Learning approach for classifying a file as Malicious or Legitimate

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Undetectable Windows Payload Generation

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

This is a rich-featured Visual Basic macro code for use during Penetration Testing assignments, implementing various advanced post-exploitation techniques.

Burp Bounty profiles compilation, feel free to contribute!

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Dradis Framework: Colllaboration and reporting for IT Security teams

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

无状态子域名爆破工具

Penetration Testing notes, resources and scripts

Brute force Instagram

Code from my old page ge.mine.nu

A curated list of awesome test automation frameworks, tools, libraries, and software for different programming languages. Sponsored by http://sdclabs.com

Brute force multiple accounts at once

Build A GUI For Xray，给Xray造一个GUI控制端。

Hershell is a simple TCP reverse shell written in Go.

Security scanner coordinator

Extract and aggregate threat intelligence.

Sparty - MS Sharepoint and Frontpage Auditing Tool [Unofficial]

Burp extension to passively scan for applications revealing software version numbers

Simple script that checks a domain for email protections

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Canary: Input Detection and Response

Read local Chrome cookies without root or decrypting

fireELF - Fileless Linux Malware Framework

Powershell script to setup windows port forwarding using native netsh client

PoC tool to demonstrate vulnerabilities in wireless input devices

ESLint security plugin for Node.js

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.

Golang security checker

Open Repository for the Open Security and Privacy Reference Architecture