981 Open source projects that are alternatives of or similar to crawleet

Set of tools to audit SIP based VoIP Systems

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

XSS'OR - Hack with JavaScript.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A Tool for Domain Flyovers

Fully automated offensive security framework for reconnaissance and vulnerability scanning

🌒 Shell command obfuscation to avoid detection systems

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

SSRF (Server Side Request Forgery) testing resources

A tool to test security of json web token

Yet Another PHP Shell - The most complete PHP reverse shell

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

A wrapper for Nmap to quickly run network scans

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Multi OTP Spam Amp/Paralell threads

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

整理一些内网常用渗透小工具

This powershell script has got to run in remote hacked windows host, even for pivoting

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

Docker images for infosec tools

Quick SQL Scanner, Dorker, Webshell injector PHP

Pymeta will search the web for files on a domain to download and extract metadata. This technique can be used to identify: domains, usernames, software/version numbers and naming conventions.

Automatic SSRF fuzzer and exploitation tool

It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)

Search Exploitable Software on Linux

A Tool that Finds, Enumerates, and Exploits Reolink Cameras.

Intelligence and Reconnaissance Package/Bundle installer.

generates weak passwords based on current date

Hourly updated database of exploit and exploitation reports

Fast Modular Web Interfaces Bruteforcer

DevBrute is a Password Brute Forcer, It can Brute Force almost all Social Media Accounts or Any Web Application.

🔐 Docker Container for Penetration Testing & Security

TryHackMe CTFs writeups, notes, drafts, scrabbles, files and solutions.

Pentest: Subdomains enumeration tool for penetration testers.

Pentesting/Bugbounty Dockerfiles.

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

A tool for generating reverse shell payloads on the fly.

Ladon Moudle MS17010 Exploit for PowerShell

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

A script to configure a TP-Link MR3040 running OpenWRT into a simple, yet powerful penetration-testing "dropbox".

PeekABoo tool can be used during internal penetration testing when a user needs to enable Remote Desktop on the targeted machine. It uses PowerShell remoting to perform this task. Note: Remote desktop is disabled by default on all Windows operating systems.

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

Ashok is a OSINT Recon Tool , a.k.a 😍 Swiss Army knife .

Tool to communicate with RPC services and check misconfigurations on NFS shares

🔑 Hash type identifier (CLI & lib)

Related subdomains finder

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.