674 Open source projects that are alternatives of or similar to Git Scanner

Powerful Visual Subdomain Enumeration at the Click of a Mouse

Cat-Nip Automated Basic Pentest Tool - Designed For Kali Linux

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

A tool to automate penetration tests

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Open Redirect Payloads

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

Automation for internal Windows Penetrationtest / AD-Security

Web Content Discovery Tool

A high performance offensive security tool for reconnaissance and vulnerability scanning

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能

Perun是一款主要适用于乙方安服、渗透测试人员和甲方RedTeam红队人员的网络资产漏洞扫描器/扫描框架

Relational database brute force and post exploitation tool for MySQL and MSSQL

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

Use ExpiredDomains.net and BlueCoat to find useful domains for red team.

An evil RAT (Remote Administration Tool) for macOS / OS X.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具

A tool to abuse Exchange services

Encoder to bypass WAF filters using XOR operations

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

🎯 Server Side Template Injection Payloads

Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing

🚀 Fast Port Scanner 🚀

Send encrypted PGP messages with one click

Audit Windows Security with best Practice

Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

📡 A python program to create a fake AP and sniff data.

File upload vulnerability scanner and exploitation tool.

Network protocol auditing framework

Human and machine readable web vulnerability testing format

Cross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.

Know the dangers of credential reuse attacks.

Wiegand data logger, replay device and micro door-controller

Just Another Linux Enumeration Script: A Bash script for locally enumerating a compromised Linux box

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

An information gathering tool to collect git commit emails in version control host services

Adds a customizable "Send to..."-context-menu to your BurpSuite.

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start

pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.

Linux enumeration tool for pentesting and CTFs with verbosity levels

An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.

A tool for auditing security properties of GCP projects.

Centralize Vulnerability Assessment and Management for DevSecOps Team

Bella is a pure python post-exploitation data mining tool & remote administration tool for macOS. 🍎💻

Elasticsearch for Offensive Security

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

Abusing Certificate Transparency logs for getting HTTPS websites subdomains.

WhiteWinterWolf's PHP web shell

Kubernetes Common Configuration Scoring System