1119 Open source projects that are alternatives of or similar to Erodir

Web path scanner

A high performance offensive security tool for reconnaissance and vulnerability scanning

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Web Application Security Scanner Framework

Automated NoSQL database enumeration and web application exploitation tool.

🆕 The Multi-Tool Web Vulnerability Scanner.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Command line tool that allows you to explore IoT devices by using Shodan API.

Subdomain enumeration through various techniques

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Get GTFOBins info about a given exploit from the command line

Yet Another PHP Shell - The most complete PHP reverse shell

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Next generation web scanner

A MongoDB importer and API for Project Sonars DNS datasets

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A list of web application security

Everything needed for doing CTFs

network reconnaissance toolkit

Sifter aims to be a fully loaded Op Centre for Pentesters

hydra

Hack the World using Termux

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

Automated script to run all modules for a specified list of domains, netblocks or company name

Go library for credentials recovery

It's a Docker Environment for pentesting which having all the required tool for VAPT.

A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life

Multi OTP Spam Amp/Paralell threads

Common Web Managers Fuzz Wordlists

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Framework For Exploring kernel vulnerabilities, network vulnerabilities ✨

Python3 script to perform LDAP queries and enumerate users, groups, and computers from Windows Domains. Ldap_Search can also perform brute force/password spraying to identify valid accounts via LDAP.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

Tool Information Gathering Write By Python.

Automatic Enumeration Tool based in Open Source tools

A tool to automate penetration tests

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Hacking Toolkit

A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

Attack Surface Management Platform | Sn1perSecurity LLC

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

Advanced dork Search & Mass Exploit Scanner

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Multi source CVE/exploit parser.

Automated Pentest Tools Designed For Parrot Linux

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)