6048 Open source projects that are alternatives of or similar to Getjs

Useful tools and scripts during Penetration Testing engagements

Penetration Testing notes, resources and scripts

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Automatically Launch Google Hacking Queries Against A Target Domain

(Not actively maintained, use DRV3-Sharp) Tools for extracting and re-injecting files for Danganronpa V3 for PC.

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Hacking tools

Fast Modular Web Interfaces Bruteforcer

Evaluate the security of S3 buckets

OSINT Tool: Generate username lists for companies on LinkedIn

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Advanced Web Shell

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Powerfull XSS Scanning and Parameter analysis tool&gem

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Web Application recon automation

Ruby on Rails Phishing Framework

A fully tested email parser for PHP 7.2+ (mailparse extension wrapper).

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

🎯 SQL Injection Payload List

All about bug bounty (bypasses, payloads, and etc)

🔬 Valve's Source 2 resource file format parser and decompiler

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

Linux enumeration tool for pentesting and CTFs with verbosity levels

One way to continuously monitor sensitive information that could be exposed on Github

📡 A python program to create a fake AP and sniff data.

Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns

Fast web fuzzer written in Go

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Set of tools to audit SIP based VoIP Systems

bash scripting thing !

Automatically brute force all services running on a target.

API, CLI & Web App for analyzing & finding a person's profile across +1000 social media \ websites (Detections are updated regularly by automated systems)

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

GitHub Recon — and what you can achieve with it!

The Swiss Army knife for automated Web Application Testing

Dump exposed HTTP .git fast

A PHP library to parse and render Quill WYSIWYG Deltas into HTML - Flexibel and extendible for custom elements.

GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fingerprints.

RAT-el is an open source penetration test tool that allows you to take control of a windows machine. It works on the client-server model, the server sends commands and the client executes the commands and sends the result back to the server. The client is completely undetectable by anti-virus software.

Extract API keys from file or url using by magic of python and regex.

An OSINT tool to gather information about the real owner of a phone number

🔥 CHAOS is a Remote Administration Tool that allow generate binaries to control remote operating systems.

The best Hacking and PenTesting tools installer on the world

Watch for file changes and then execute command. Very nice for test driven development.

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

🔪 Leak git repositories from misconfigured websites

BlackRAT - Java Based Remote Administrator Tool

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

An extremely opinionated command-line parser.

A Subdomain Enumeration and Validation tool for Bug Bounty and Pentesters.

The all-in-one Red Team extension for Web Pentester 🛠

The ultimate WinRM shell for hacking/pentesting

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

A permutation generation tool written in golang