642 Open source projects that are alternatives of or similar to dorothy

Monitoring GitHub for sensitive data shared publicly

Monitoring GitLab for sensitive data shared publicly

🦄🔒 Awesome list of secrets in environment variables 🖥️

Monitoring your Slack workspaces for sensitive information

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

🦁 Juumla is a python tool created to identify Joomla version, scan for vulnerabilities and search for config or backup files.

Bringing you the best of the worst files on the Internet.

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

A concise, directive, specific, flexible, and free incident response plan template

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

Collection of PowerShell functions a Red Teamer may use to collect data from a machine

The all-in-one Red Team extension for Web Pentester 🛠

easy-to-use payload hosting

A collection of awesome security hardening guides, tools and other resources

Vulnerability Dashboard

Awesome Node.js Security resources

Responsive Command and Control System

internet monitoring osint telegram bot for windows

Wireshark Cheat Sheet

🔐 Docker Container for Penetration Testing & Security

A toolkit for Security Researchers

Backend logic implementation for Vulnerability Management System

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

网络安全 · 攻防对抗 · 蓝队清单，中文版

LLMNR/NBNS/mDNS Spoofing Detection Toolkit

A simple remote tool in C#.

Additional Resources For Securing The Stack Tutorials

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

We propose a user-friendly add-on that allows you to check if your encrypted web traffic (SSL/TLS) towards secured Internet servers (HTTPS) is not intercepted (being listened to).

An advanced tool for email reconnaissance

The Collective. A repo for a collection of red-team projects found mostly on Github.

VirusTotal Wanna Be - Now with 100% more Hipster

A Python Bytecode Disassembler helping reverse engineers in dissecting Python binaries by disassembling and analyzing the compiled python byte-code(.pyc) files across all python versions (including Python 3.10.*)

WebMap-Nmap Web Dashboard and Reporting

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

An ongoing list of virtual cybersecurity conferences.

OWASP Honeypot, Automated Deception Framework.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

Threat Hunting queries for various attacks

🎯 XML External Entity (XXE) Injection Payload List

PyIris is a modular remote access trojan toolkit written in python targeting Windows and Linux systems.

Leaked pentesting manuals given to Conti ransomware crooks

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Collection of several DDos tools.

🔑 Hash type identifier (CLI & lib)

A tool for generating reverse shell payloads on the fly.

Spin up new Windows qubes quickly, effortlessly and securely on Qubes OS

a commandline #OSINT tool to find the online presence of a username in popular social media websites like Facebook, Instagram, Twitter, etc.

A collection of some of my scripts

This little tool is to calculate a MurmurHash value of a favicon to hunt phishing websites on the Shodan platform.

Information Security Library

An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.

You didn't think I'd go and leave the blue team out, right?

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.

Automated Adversary Emulation Platform

Malware Sample Sources

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks