2417 Open source projects that are alternatives of or similar to Dumpsterfire

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Set of tools to audit SIP based VoIP Systems

Cameradar hacks its way into RTSP videosurveillance cameras

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Hacking Toolkit

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Web path scanner

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Jok3r v3 BETA 2 - Network and Web Pentest Automation Framework

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Extract subdomains from SSL certificates in HTTPS sites.

Fast Modular Web Interfaces Bruteforcer

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

C2/post-exploitation framework

🔐 Docker Container for Penetration Testing & Security

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

X Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter

A tool to test security of json web token

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Next generation web scanner

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

A high performance offensive security tool for reconnaissance and vulnerability scanning

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

vulnx 🕷️ is an intelligent bot auto shell injector that detect vulnerabilities in multiple types of cms { `wordpress , joomla , drupal , prestashop .. `}

The all-in-one Red Team extension for Web Pentester 🛠

HostHunter a recon tool for discovering hostnames using OSINT techniques.

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Intelligence and Reconnaissance Package/Bundle installer.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

Attack Surface Management Platform | Sn1perSecurity LLC

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Awesome cloud enumerator

Fully automated offensive security framework for reconnaissance and vulnerability scanning

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

A tool to automate penetration tests

hydra

Applied offensive security with Rust - Early access - https://academy.kerkour.com/black-hat-rust?coupon=GITHUB

swiss army knife for hackers

A REST API security testing framework.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Web application vulnerability scanner

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

A Python Tool For google Hacking

Open Redirect Payloads

Python 3.5+ DNS asynchronous brute force utility

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords