441 Open source projects that are alternatives of or similar to Findwebshell

Android library to reveal or obfuscate strings and assets at runtime

A static analysis tool for security

Some of the best web shells that you might need!

Burp Extender plugin that generates a sitemap of a website using Wayback Machine

一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密

Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb)

Exein core for Linux based firmware

安全编排与自动化响应平台

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

HackerOne "in scope" domains

Tool made to automate tasks of pentesting.

ContainerSSH: Launch containers on demand

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

Source Code Security Audit (源代码安全审计)

Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

Hyuga 一个用来记录DNS查询和HTTP请求的监控工具。

Fuzz your Rust code with Google-developed Honggfuzz !

OSS Vulnerability Scanner for Windows Platform

Open source application to instantly remediate common security issues through the use of AWS Config

A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools

A Blazing fast Security Auditing tool for Kubernetes

An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.

Collection of PowerShell network security scripts for system administrators.

AWS Identity and Access Management Visualizer and Anomaly Finder

Access your terminal from anywhere via the web.

memory search and patch tool on debuggable apk without root & ndk

The full story of the CLR implementation of Meterpreter

PHP安全SDK及编码规范

The dum^H^H^Hsimplest encryption tool in the world.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Automated NoSQL database enumeration and web application exploitation tool.

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

🚀 Fast Port Scanner 🚀

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

.NET runtime inspector

njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR

Awesome Java Security Resources 🕶☕🔐

Faster and more efficient stateless SYN scanner and banner grabber due to userland TCP/IP stack usage.

Search exposed EBS volumes for secrets

一行代码检测XP/调试/多开/模拟器/root

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Cloud Discovery provides a point in time enumeration of all the cloud native platform services

Official Black Hat Arsenal Security Tools Repository

php大马|php一句话|webshell|免杀过狗|渗透|黑客

🛡️⚔️ Protect your web app from DDOS attack or the Dead Ping + CAPTCHA VERIFICATION in one line!

A binary analysis framework

Linux privilege escalation auditing tool

A ZigBee hacking toolkit by Bishop Fox

Tools of "The Bug Hunters Methodology V2 by @jhaddix"

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

A secret manager for AWS

Data leak checker & OSINT Tool

CMS/LMS/Library etc Versions Fingerprinter