1255 Open source projects that are alternatives of or similar to Dradis Ce

Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response.

RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.

Sifter aims to be a fully loaded Op Centre for Pentesters

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

Subdomain Takeover tool written in Go

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

🔥 A powerful MongoDB auditing and pentesting tool 🔥

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training!

Script to spider a website and find publicly open S3 buckets

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

my oscp prep collection

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Set of tools to audit SIP based VoIP Systems

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

A tool to hunt for publicly accessible DigitalOcean Spaces

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

Hetty is an HTTP toolkit for security research.

The LAZY script will make your life easier, and of course faster.

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

Get GTFOBins info about a given exploit from the command line

VOIP Security Audit Framework

A tool to automate penetration tests

HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.

Hawkeye filesystem analysis tool

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Vagrant VirtualBox environment for conducting an internal network penetration test

Generates malicious LNK file payloads for data exfiltration

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

A Tool for Domain Flyovers

Multi source CVE/exploit parser.

Pentest: Subdomains enumeration tool for penetration testers.

Login hunter of default credentials for administrative web interfaces leveraging NNdefaccts dataset.

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

List of every possible vulnerabilities in computer security.

Totally Insecure Web Application Project (TIWAP)

Collection of several DDos tools.

SEC分布式资产扫描系统

Misc. Public Reports of Penetration Testing and Security Audits.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

Yet Another PHP Shell - The most complete PHP reverse shell

Vulnerability assessment and penetration testing automation and reporting platform for teams.

A pentesting tool inspired by mr robot and derived by zphisher

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Port scanning and domain utility.

Awesome cloud enumerator

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Command line tool that allows you to explore IoT devices by using Shodan API.

Selenium powered Python script to automate searching for vulnerable web apps.

Web Application Security Scanner Framework

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Steganography brute-force utility to uncover hidden data inside files

Web Content Discovery Tool