2820 Open source projects that are alternatives of or similar to Crithit

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN、指纹信息、状态信息等。

Intelligence tool but without API key

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

Pentest Report Generator

Find cloud assets that no one wants exposed 🔎 ☁️

Useful tools and scripts during Penetration Testing engagements

Awesome hacking is an awesome collection of hacking tools.

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

Penetration Testing notes, resources and scripts

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

📡 A python program to create a fake AP and sniff data.

OSINT Tool: Generate username lists for companies on LinkedIn

Your Google Recon is Now Automated

All in One Hacking Tool for Linux & Android (Termux). Make your linux environment into a Hacking Machine. Hackers are welcome in our blog

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

hacker, ready for more of our story ! 🚀

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

A collection of personal scripts used in hacking excercises.

Awesome Vulnerable Applications

Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A web front-end for password cracking and analytics

Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi

A tool to test security of json web token

Study Notes For Web Hacking / Web安全学习笔记

Ruby on Rails Phishing Framework

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Gorsair hacks its way into remote docker containers that expose their APIs

Exploit Pack -The next generation exploit framework

Don't let buffer overflows overflow your mind

A simple tool for interacting with OWASP ZAP from the commandline.

Multi Tool Subdomain Enumeration

A static analysis security vulnerability scanner for Ruby on Rails applications

Know the dangers of credential reuse attacks.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

被动式漏洞扫描系统

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A default credential scanner.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

A curated list of awesome OSCP resources

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

Security Tool to Look For Interesting Files in S3 Buckets

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

Intelligence and Reconnaissance Package/Bundle installer.

A Go implementation of dirsearch.

Micro-framework for rapid development of reusable security tools

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Infection vector that bypasses AV, IDS, and IPS. (For now...)

All-in-one tool for managing vulnerability reports from AppSec pipelines

Subdomain Takeover tool written in Go

Open-Source Security Architecture | 开源安全架构

A list to discover work of red team tooling and methodology for penetration testing and security assessment