1027 Open source projects that are alternatives of or similar to Ecommerce Website Security Checklist

平常看到好的渗透hacking工具和多领域效率工具的集合

Collection of quality safety articles. Awesome articles.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

安全编排与自动化响应平台

Project transferred to: https://github.com/taielab/awesome-hacking-lists

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A collection of various awesome lists for hackers, pentesters and security researchers

🔺 Red Team Hardware Toolkit 🔺

📕 Both personal and public notes for EC-Council's CEHv10 312-50, because its thousands of pages/slides of boredom, and a braindump to many

Quack Toolkit is a set of tools to provide denial of service attacks. Quack Toolkit includes SMS attack tool, HTTP attack tool and many other attack tools.

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p

hacker, ready for more of our story ! 🚀

安全、可靠、简单、免费的企业级蜜罐

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

ALL IN ONE Hacking Tool For Hackers

200 TOOLS BY 0XID4FF0X FOR TERMUX

Enine boyuna siber güvenlik

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

A permutation generation tool written in golang

Black Worm Offical Repo

Free advanced and modern Windows botnet with a nice and secure PHP panel.

Offensive Docker is an image with the more used offensive tools to create an environment easily and quickly to launch assessment to the targets.

Framework for building Windows malware, written in C++

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

A list of resources for those interested in getting started in bug bounties

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Web path scanner

Wordpress 🔥 Joomla 🔥 Drupal 🔥 OsCommerce 🔥 Prestashop 🔥 Opencart 🔥

Multi-threaded Instagram Brute Forcer (100 attemps at once)

Micro-framework for rapid development of reusable security tools

bash scripting thing !

🎯 XML External Entity (XXE) Injection Payload List

Entropy Toolkit is a set of tools to provide Netwave and GoAhead IP webcams attacks. Entropy Toolkit is a powerful toolkit for webcams penetration testing.

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Repositório com conteúdo sobre web hacking em português

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

Mouse Framework is an iOS and macOS post-exploitation framework that gives you a command line session with extra functionality between you and a target machine using only a simple Mouse payload. Mouse gives you the power and convenience of uploading and downloading files, tab completion, taking pictures, location tracking, shell command execution, escalating privileges, password retrieval, and much more.

The all-in-one Red Team extension for Web Pentester 🛠

Hawkeye filesystem analysis tool

The linux choice collection tools

一款信息泄漏利用工具，适用于.git/.svn源代码泄漏和.DS_Store泄漏

Phonia Toolkit is one of the most advanced toolkits to scan phone numbers using only free resources. The goal is to first gather standard information such as country, area, carrier and line type on any international phone numbers with a very good accuracy.

The Web Application Hacker's Handbook - Extra Content

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

Information about my experiences on ethical hacking 💀

BlackRAT - Java Based Remote Administrator Tool

供应链中台系统基础版，集成零售管理, 电子商务, 供应链管理, 财务管理, 车队管理, 仓库管理, 人员管理, 产品管理, 订单管理, 会员管理, 连锁店管理, 加盟管理, 前端React/Ant Design, 后端Java Spring+自有开源框架，全面支持MySQL, PostgreSQL, 全面支持国产数据库南大通用GBase 8s,通过REST接口调用，前后端完全分离。

A social experiment

linux动态链接库的注入修改查找工具 A tool for injection, modification and search of linux dynamic link library

Python Ransomware Tutorial - YouTube tutorial explaining code + showcasing the ransomware with victim/target roles

Tool designed to help identify open Elasticsearch servers that are exposing sensitive information

Shopware 6 is an open source eCommerce platform realised by the ideas and the spirit of its community.

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️

Elastic Path + Gatsby powered online store

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Security and Hacking Tools, Exploits, Proof of Concepts, Shellcodes, Scripts.

Find leaked secrets via github search

Gives you one-liners that aids in penetration testing operations, privilege escalation and more