1771 Open source projects that are alternatives of or similar to Gitgraber

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

Fully automated offensive security framework for reconnaissance and vulnerability scanning

OSINT

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.

👻Impost3r -- A linux password thief

a tool to analyze filesystem images for security

Performing security tests inside your CI

Extract and aggregate threat intelligence.

🔎 shodansploit > v1.3.0

Secure, Unified, Powerful and Extensible Rust Android Analyzer

Python 3.5+ DNS asynchronous brute force utility

Web application vulnerability scanner

Golang security checker

fireELF - Fileless Linux Malware Framework

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

👻Stowaway -- Multi-hop Proxy Tool for pentesters

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

Infection Monkey - An automated pentest tool

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

ssh rdp vnc telnet sftp bastion/jump web putty xshell terminal jumpserver audit realtime monitor rz/sz 堡垒机 云桌面 linux devops sftp websocket file management rz/sz otp 自动化运维 审计 录像 文件管理 sftp上传 实时监控 录像回放 网页版rz/sz上传下载/动态口令 django

LKM rootkit for Linux Kernels 2.6.x/3.x/4.x/5.x (x86/x86_64 and ARM64)

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

OneForAll是一款功能强大的子域收集工具

Watchdog - A Comprehensive Security Scanning and a Vulnerability Management Tool.

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

An OSINT Metadata analyzing tool that filters through tags and creates reports

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A MongoDB importer and API for Project Sonars DNS datasets

Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Application Security Testing (DAST).

Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.

Intelligence tool but without API key

mXtract - Memory Extractor & Analyzer

Glass - ISC DHCP Server Interface

A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

The Swiss Army knife for automated Web Application Testing

Making Favicon.ico based Recon Great again !

Tool for complete hardening of Linux boot chain with UEFI Secure Boot

E-mails, subdomains and names Harvester - OSINT

StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.

Hardening Ubuntu. Systemd edition.

Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

🔎 Hunt down social media accounts by username across social networks

Dark Web OSINT Tool

a recon tool that allows searching on URLs that are exposed via shortener services

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Mining parameters from dark corners of Web Archives

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

Clearly see and debug your celery cluster in real time!

Web Scan Lazy Tools - Python Package

A list of useful payloads and bypass for Web Application Security and Pentest/CTF