3705 Open source projects that are alternatives of or similar to Dictionary Of Pentesting

The Pi-hole FTL engine

the champagne of beta embedded databases

Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!

Relational database brute force and post exploitation tool for MySQL and MSSQL

Misc. Public Reports of Penetration Testing and Security Audits.

A simple brute forcer written in GO for SHA1, SHA256, SHA512, MD5 and bcrypt

A Tool for Domain Flyovers

Summary of online learning materials

Extract endpoints marked as disallow in robots files to generate wordlists.

📚 An ultimate collection wordlists of the best-known CMS

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

a very very fast brute force webshell password tool

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

🦄🔒 Awesome list of secrets in environment variables 🖥️

Wifi Bruteforce (WiBr) is a wifi cracking tool written in c#.

A passive subdomain finder

A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.

HTTP fuzzer engine security oriented

A tool that will hack literally anything on the planet. If you get your hands on this tool, be ready to get put behind bars.

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Port scanning and domain utility.

Pentest/BugBounty progress control with scanning modules

X Brute Forcer Tool 🔓 WordPress , Joomla , DruPal , OpenCart , Magento

BugBounty Tool

It's a tool which generate a dictionary from a csv containing personals informations. Generate all common passwords based on perso info. (leet transformations and combinatory processing)

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

Do some quick reconnaissance on a domain-based web-application

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

Show and change your network settings

😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Selenium powered Python script to automate searching for vulnerable web apps.

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Infosec Wordlists

Awesome cloud enumerator

Load a fresh new copy of ntdll.dll via file mapping to bypass API inline hook.

Automatically Launch Google Hacking Queries Against A Target Domain

Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation

Penetration Testing notes, resources and scripts

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Next generation web scanner

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

Jam all wifi clients/routers.

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

渗透测试情报收集工具

Hetty is an HTTP toolkit for security research.

A fully automatic wifi deauther coded in Python

An automated approach to performing recon for bug bounty hunting and penetration testing.

🎯 XML External Entity (XXE) Injection Payload List

A tool to automate penetration tests

Easy files and payloads delivery over DNS

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom binaries, cross-match those with bins in GTFO Bin's repository & auto-exploit those, all with colors! ( ͡~ ͜ʖ ͡°)

OneForAll是一款功能强大的子域收集工具

Bull's Eye Wordlist Generator - Does your password rely on predictable patterns of accessible info?

swiss army knife for hackers

Wordlist, rules and masks from Kaonashi project (RootedCON 2019)

a fast domain brute tool