871 Open source projects that are alternatives of or similar to Eyes.sh

Selenium powered Python script to automate searching for vulnerable web apps.

Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.

Docker image for Osmedeus, a fully automated offensive security tool for reconnaissance and vulnerability scanning

A fast GitHub stargazers information gathering tool

Do some quick reconnaissance on a domain-based web-application

😹 Tomcter is a python tool developed to bruteforce Apache Tomcat manager login with Apache Tomcat default credentials.

The iOS Security Testing Framework

Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

Burp extension to passively scan for applications revealing software version numbers

Functions that can be used to gain Reverse Shells with PowerShell

In-depth Attack Surface Mapping and Asset Discovery

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Oracle Database Penetration Testing Reference (10g/11g)

Open Redirect scanner - (out of date)

A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis

Information gathering tool - OSINT

A shot-for-shot remake of the Google Login Page.

Just another script for automatize boolean-based blind SQL injections. (Demo)

A repo with information about security of Ethereum Smart Contracts

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

🔎 Hunt down social media accounts by username across social networks

Quick utility to craft executables for pentesting and managing reverse shells

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Quick tool for checking CVE-2020-0688 on multiple hosts with a non-intrusive method.

An HTTP/HTTPS intercept proxy written in Go.

C2/post-exploitation framework

SecurityExplained is a new series after the previous learning challenge series #Learn365. The aim of #SecurityExplained series is to create informational content in multiple formats and share with the community to enable knowledge creation and learning.

Open Source Information Facebook

Summary of online learning materials

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Repository of my CTF writeups

ODAT: Oracle Database Attacking Tool

Facebook Write-ups, PoC, and exploitation codes:

🔎 Find usernames across social networks.

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Hashtopolis - A Hashcat wrapper for distributed hashcracking

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

The best Hacking and PenTesting tools installer on the world

online port scan scraper

This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Botnet targeting Windows machines written entirely in Python & open source security project.

Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

⚡️An awesome list of the best Termux hacking tools

My notes on PentesterLab's Bootcamp series 🕵️

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

This Script will help you to gather information about your victim or friend.

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

This script will you help to find the information about the website and to help in penetrating testing

link is a command and control framework written in rust

Post-Exploitation Framework

Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.

The New Hacking Framework

Dracnmap is an open source program which is using to exploit the network and gathering information with nmap help. Nmap command comes with lots of options that can make the utility more robust and difficult to follow for new users. Hence Dracnmap is designed to perform fast scaning with the utilizing script engine of nmap and nmap can perform various automatic scanning techniques with the advanced commands.

A swiss army knife for pentesting networks