1205 Open source projects that are alternatives of or similar to Discover

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

bug bounty hunters starter notes

备考 OSCP 的各种干货资料/渗透测试干货资料

Каталог нетсталкерских ресурсов, команд, инструментов, источников контента.

An Instagram OSINT tool to collect all the geotagged locations available on an Instagram profile in order to plot them on a map, and dump them in a JSON.

A C/C++ implementation of Microsoft's Antimalware Scan Interface

Development environment for Meedan Check, a collaborative media annotation platform

HydraFW official firmware for HydraBus/HydraNFC for researcher, hackers, students, embedded software developers or anyone interested in debugging/hacking/developing/penetration testing

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

Single Page Cheatsheet for common MSF Venom One Liners

SQL injection script for MSSQL that extracts domain users from an Active Directory environment based on RID bruteforcing

一个关于数字隐私搜集、保护、清理集一体的方案,外加开源信息收集(OSINT)对抗

Awesome Fingerprint Identify for react-native (android only)

Lockphish it's the first tool (07/04/2020) for phishing attacks on the lock screen, designed to grab Windows credentials, Android PIN and iPhone Passcode using a https link.

An advanced graphical search engine for Exploit-DB

Twitter Intelligence OSINT project performs tracking and analysis of the Twitter

Auto IP or Domain Attack Tool ( #1 )

Accurately Locate Smartphones using Social Engineering

Monitor, Alert, and Discover sensitive info and data leakage on Github.

Phishing catcher using Certstream

Monitor twitter stream

Detect hidden files and text in images

Automated Instagram Unfollower Bot

All in one tool for Information Gathering, Vulnerability Scanning and Crawling. A must have tool for all penetration testers

POOPAK - TOR Hidden Service Crawler

Undetectable Windows Payload Generation

An Advanced Tool For Complete Apk-Modding In Termux ...

A Go implementation of dirsearch.

Centralize Vulnerability Assessment and Management for DevSecOps Team

Brute force Instagram

Don't let buffer overflows overflow your mind

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Wireshark Cheat Sheet

Amazon S3 bucket spelunking!

Infection vector that bypasses AV, IDS, and IPS. (For now...)

Username recognition on various websites.

A post exploitation framework designed to operate covertly on heavily monitored environments

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

Venmo trasaction dataset for data analysis/visualization/anything

ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.

Fast browser-based network discovery module

Kali Linux 工具合集中文说明书

Chrome extension designed for WordPress Vulnerability Scanning and information gathering!

Convert Instagram user ID to username & vice versa

Study Notes For Web Hacking / Web安全学习笔记

Work in progress...

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

A list to discover work of red team tooling and methodology for penetration testing and security assessment

Awesome Vulnerable Applications

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

A curated list of awesome Internet port and host scanners, plus related components and much more, with a focus on free and open source projects.

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks