516 Open source projects that are alternatives of or similar to Clr Meterpreter

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Automated Mass Exploiter

C++ interactive / live coding with Qt

A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.

VOIP Security Audit Framework

Security scanner coordinator

Tool to predict attacker groups from the techniques and software used

Extract and aggregate threat intelligence.

Read local Chrome cookies without root or decrypting

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Golang security checker

A Golang Reverse Shell w/ a Tmux-driven psuedo-C2 Interface

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Live on-demand transcoding in go using ffmpeg. Also with NVIDIA GPU hardware acceleration.

Public append-only ledger microservice built with Slim Framework

Awesome hacking is an awesome collection of hacking tools.

Analyses your Java and Python applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/

An Unsupervised Graph-based Toolbox for Fraud Detection

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

A security monitoring solution for Kubernetes

Convolutional neural network for analyzing pentest screenshots

Scrapes Router Passwords From http://www.routerpasswords.com ,more then +300 product

Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.

Provide guidance to test live streaming (mpeg-dash or hls) or vod from your desktop

Enumerate and disable common sources of telemetry used by AV/EDR.

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

Performing security tests inside your CI

Android Mobile Device Hardening

A source code analyzer built for surfacing features of interest and other characteristics to answer the question 'What's in the code?' quickly using static analysis with a json based rules engine. Ideal for scanning components before use or detecting feature level changes.

A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR implant.

Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

无状态子域名爆破工具

Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.

Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.

myscan 被动扫描

Build A GUI For Xray，给Xray造一个GUI控制端。

Ladon Pentest Scanner framework 全平台LadonGo开源内网渗透扫描器框架，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/HttpBanner/HttpTitle/TcpBanner/Weblogic/Oxid多网卡主机，端口扫描服务识别PortScan。

🚀 Fast Port Scanner 🚀

Toolbox containing research notes & PoC code for weaponizing .NET's DLR

ESLint security plugin for Node.js

Python 3.5+ DNS asynchronous brute force utility

Pattern language

A light-weight password manager with a focus on simplicity and security

A simple browser environment for coding live javascript.

Remove code signatures from OSX Mach-O binaries (note: unsigned binaries cannot currently be re-codesign'ed. Patches welcome!)

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

WEB SERVICE SECURITY ASSESSMENT TOOL

SIPCheck is a tool that watch the authentication of users of Asterisk and bans automatically if some user (or bot) try to register o make calls using wrong passwords.

Red team Arsenal - An intelligent scanner to detect security vulnerabilities in company's layer 7 assets.

Easy vector graphics with Python

Simple script that checks a domain for email protections

Golang安全资源合集

Swift Video Framework for Linux, macOS, and iOS/iPadOS

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Username enumeration and password spraying tool aimed at Microsoft O365.

A note-taking macOS app for penetration-testers.

DNS-Discovery is a multithreaded subdomain bruteforcer.

🔐 Open Source Python Keylogger Collection