1117 Open source projects that are alternatives of or similar to Crips

Auto IP or Domain Attack Tool ( #1 )

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

Advanced Reconnaissance tool to enumerate attacking surface of the target.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

EternalView is an all in one basic information gathering and vulnerability assessment tool

OSINT

Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A high performance offensive security tool for reconnaissance and vulnerability scanning

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

🤖 The Modern Port Scanner 🤖

Idiomatic nmap library for go developers

swiss army knife for hackers

The Last Web Recon Tool You'll Need

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

network reconnaissance toolkit

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

locate and attack Lync/Skype for Business

Know the dangers of credential reuse attacks.

A simple dns resolver of dns-record and web-record log server for pentesting

Perform automated network reconnaissance scans

Python network worm that spreads on the local network and gives the attacker control of these machines.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Set of tools to audit SIP based VoIP Systems

Awesome cloud enumerator

Automated brute-forcing attack tool.

Study Notes For Web Hacking / Web安全学习笔记

The ultimate WinRM shell for hacking/pentesting

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

📡 A python program to create a fake AP and sniff data.

web scanner - exploitation - information gathering

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

RubberDucky like payloads for DigiSpark Attiny85

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

The all-in-one Red Team extension for Web Pentester 🛠

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

A tool to fastly get all javascript sources/files

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

retrieve information via O365 with a valid cred

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

BruteDum - Brute Force attacks SSH, FTP, Telnet, PostgreSQL, RDP, VNC with Hydra, Medusa and Ncrack

Vagrant VirtualBox environment for conducting an internal network penetration test

Hawkeye filesystem analysis tool

Rockyou for web fuzzing

Cameradar hacks its way into RTSP videosurveillance cameras

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

The linux choice collection tools

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop

Information gathering & website reconnaissance | https://phishstats.info/