617 Open source projects that are alternatives of or similar to Cloudflair

☠️ The Pathwar Project ☠️

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

🗑️ GitHub Action to purge a website's cache via the Cloudflare API

A list of resources for those interested in getting started in bug bounties

Checks using a test string if a Cloudflare DNS bypass is possible using CloudFail.

Spoilerwall introduces a brand new concept in the field of network hardening. Avoid being scanned by spoiling movies on all your ports!

Chashell is a Go reverse shell that communicates over DNS. It can be used to bypass firewalls or tightly restricted networks.

Raspberry Pi setup with Pi-Hole, CloudflareD, DHCP as the ultimate Ad-blocker

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Exploit Pack -The next generation exploit framework

A collection of various GitHub gists for hackers, pentesters and security researchers

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Cloudflare Partner Panel

XSHOCK Shellshock Exploit

RFD Checker - security CLI tool to test Reflected File Download issues

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

K8Cscan大型内网渗透自定义插件化扫描神器，包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用，程序采用多线程批量扫描大型内网多个IP段C段主机，目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本，支持Cobalt Strike联动

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。

Web path scanner

Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Generate unicode evil domains for IDN Homograph Attack and detect them.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Burp extension to passively scan for applications revealing software version numbers

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

Wordpress Attack Suite

BurpSuite收集：包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程，欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar

Cloudflare hook bash for dehydrated - DNS-01 Challenge Let's Encrypt

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

Updating public dynamic IP address to existing cloudflare DNS record

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

Simple Karma Attack

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.

Abusing Impersonation Privileges on Windows 10 and Server 2019

Pentest environment deployer (kali linux + targets) using vagrant and chef.

Generate Gmail Emailing Keyloggers to Windows.

windows-kernel-exploits Windows平台提权漏洞集合

🍩 DNS over HTTPs command-line client

CloudFlare Dynamic DNS client

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

Browse and search through nmap's NSE scripts.

Snoop — инструмент разведки на основе открытых данных (OSINT world)

OWASP WEB Directory Scanner

Powerfull XSS Scanning and Parameter analysis tool&gem

Browser's XSS Filter Bypass Cheat Sheet

RDP man-in-the-middle (mitm) and library for Python with the ability to watch connections live or after the fact

--DEPRECATED -- 🛑 🛑 Node.js library to bypass cloudflare's anti-ddos page

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Most usable tools for iOS penetration testing

Chef repository for pentesting tools

🌊 A free REST API for random Kanye West quotes (Kanye as a Service)

Automated Red Team Infrastructure deployement using Docker

CLI utility managing CloudFlare services using CloudFlare API

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments. The goal of macro_pack is to simplify exploitation, antimalware bypass, and automatize the process from malicious macro and script generation to final document generation. It also provides a lot of helpful features useful for redteam or security research.