370 Open source projects that are alternatives of or similar to Fuse

A tool to test security of json web token

Post-Exploitation Framework

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python Books for Security

Automated NoSQL database enumeration and web application exploitation tool.

Burp Suite extension to passively scan for applications revealing server error messages

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Security Tool to Look For Interesting Files in S3 Buckets

A collection of hacking / penetration testing resources to make you better!

A portable console aimed at making pentesting with PowerShell a little easier.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

VOIP Security Audit Framework

An HTTP/HTTPS intercept proxy written in Go.

Pentesting suite for Maltego based on data in a Metasploit database

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

A fast web directory/file enumeration tool written in Rust

Tools for Hacking

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

🔗 All the resources I could find for learning Ethical Hacking and Penetration Testing.

Penetration tests guide based on OWASP including test cases, resources and examples.

A default credential scanner.

M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter

A Python-powered exploitation framework and botnet.

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

A curated list of awesome OSCP resources

Python script wrote to automate the process of generating various reverse shells.

Directory Services Internals (DSInternals) PowerShell Module and Framework

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

🐶 A curated list of Web Security materials and resources.

Don't let buffer overflows overflow your mind

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

Payload for teensy like a rubber ducky but the syntax is different. this Human interfaes device ( HID attacks ). Penetration With Teensy . Brutal is a toolkit to quickly create various payload,powershell attack , virus attack and launch listener for a Human Interface Device ( Payload Teensy )

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Web path scanner

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

A cross-platform note-taking & target-tracking app for penetration testers.

A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

An advanced graphical search engine for Exploit-DB

Hacking Toolkit

wooyun public information backup

A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.

The Robot Security Framework (RSF), Robot Security Framework (RSF), a standardized methodology to perform security assessments in robotics.

A web front-end for password cracking and analytics

Study Notes For Web Hacking / Web安全学习笔记

Work in progress...

Automated Security Testing For REST API's

Quiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.

A place where I can create, collect and share tooling, resources and knowledge about information security.

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.

unix SSH post-exploitation 1337 tool

Automated Cyber Offense