429 Open source projects that are alternatives of or similar to clairvoyance

Work in progress...

Pentest: Subdomains enumeration tool for penetration testers.

Web path scanner

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

A cross-platform note-taking & target-tracking app for penetration testers.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A Tool for Domain Flyovers

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

It's a Docker Environment for pentesting which having all the required tool for VAPT.

A collection of various awesome lists for hackers, pentesters and security researchers

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Extract endpoints marked as disallow in robots files to generate wordlists.

Cheat-Sheet of tools for penetration testing

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

A dictionary attack tool for PostgreSQL and MSSQL

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Collect email addresses by crawling search engine results.

Penetration tests on SSH servers using brute force or dictionary attacks. Written in Python.

Quick SQL Scanner, Dorker, Webshell injector PHP

pure python remote adb scanner + nmap scan module

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

CloudDefense.ai is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

A Collection of Notes, Methodologies, POCs and everything else related to Bug Hunting.

Bash script that automates the enumeration of domains and DNS servers in the active information gathering.

Web Penetration Testing with Kali Linux - Third Edition, published by Packt

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

Automated Pentest Tools Designed For Parrot Linux

PENIOT: Penetration Testing Tool for IoT

Script to spider a website and find publicly open S3 buckets

Classic code from 1999+ I am fairly sure this is the first public polymorphic shellcode ever (best IMHO and others http://ids.cs.columbia.edu/sites/default/files/ccs07poly.pdf :) If I ever port this to 64 or implement a few other suggestions (sorry I lost ppc code version contributed) it will be orders of magnitude more difficult to spot, so I h…

My Tools For Bug Bounty

recon-ng modules for Censys

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

Kali Intelligence Suite (KIS) shall aid in the fast, autonomous, central, and comprehensive collection of intelligence by executing standard penetration testing tools. The collected data is internally stored in a structured manner to allow the fast identification and visualisation of the collected information.

Boxer: A fast directory bruteforce tool written in Python with concurrency.

This Script will produce all of the WPA2 Passwords used by various Router companies aswell as Fritzbox. All of these Passwords will be 16 Numbers in length. So it could get a bit large.

Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Tools used for Penetration testing / Red Teaming

Credentials Checking Framework

Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

PowerShell payload generator

Opening the door, one reverse shell at a time

A Python Hacking Library consisting of network scanner, arp spoofer and detector, dns spoofer, code injector, packet sniffer, network jammer, email sender, downloader, wireless password harvester credential harvester, keylogger, download&execute, ransomware, data harvestors, etc.

Microsoft Azure Exploitation Framework

Turn PuTTY into an SSH login bruteforcing tool.

GoPhish Templates that I have retired and/or templates I've recreated.

Kali image with kali-linux-full metapackage installed, build every night.

In my computer security courses I make extensive usage of cheatsheets for various tools and extra materials to complement the student learning if they are willing to do so. I have decided to share them to enable others to take advantage of them

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

pentest toolbox

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Command line tool for passive reconnaissance, able to gather and link public information to a target domain, company or individual. It can make intelligence gathering faster and more effective by drastically reducing manual user interaction. This is achieved through the engineering of a highly customisable single input to multiple output solutio…

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

An awesome collection of curated Cyber Security resources(Books, Tutorials, Blogs, Podcasts, ...)