948 Open source projects that are alternatives of or similar to Eyes

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

A high performance offensive security tool for reconnaissance and vulnerability scanning

Fully automated offensive security framework for reconnaissance and vulnerability scanning

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

network reconnaissance toolkit

The Last Web Recon Tool You'll Need

A tool to test security of json web token

HostHunter a recon tool for discovering hostnames using OSINT techniques.

Tool Information Gathering Write By Python.

The LAZY script will make your life easier, and of course faster.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

Hacking Toolkit

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.

备考 OSCP 的各种干货资料/渗透测试干货资料

🔐 Docker Container for Penetration Testing & Security

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Pentest: Subdomains enumeration tool for penetration testers.

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

hydra

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Attack Surface Management Platform | Sn1perSecurity LLC

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

A wrapper for Nmap to quickly run network scans

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.

Yet Another PHP Shell - The most complete PHP reverse shell

A tool to automate penetration tests

Web path scanner

Steganography brute-force utility to uncover hidden data inside files

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙

Idiomatic nmap library for go developers

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Sifter aims to be a fully loaded Op Centre for Pentesters

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

PhoneInfoga is one of the most advanced tools to scan international phone numbers using only free resources. It allows you to first gather standard information such as country, area, carrier and line type on any international phone number. Then search for footprints on search engines to try to find the VoIP provider or identify the owner.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

PacketWhisper: Stealthily exfiltrate data and defeat attribution using DNS queries and text-based steganography. Avoid the problems associated with typical DNS exfiltration methods. Transfer data between systems without the communicating devices directly connecting to each other or to a common endpoint. No need to control a DNS Name Server.

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

Dradis Framework: Colllaboration and reporting for IT Security teams

Useful tools and scripts during Penetration Testing engagements

Penetration Testing notes, resources and scripts

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and users through SMB.

NetCat for Windows

Semi-automatic OSINT framework and package manager

OSINT Tool: Generate username lists for companies on LinkedIn

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A curated list of awesome OSCP resources

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

📌 Your beginner pen-testing start guide. A guide for amateur pen testers and a collection of hacking tools, resources and references to practice ethical hacking and web security.

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network