1032 Open source projects that are alternatives of or similar to Goaltdns

Hawkeye filesystem analysis tool

Web path scanner

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

Cameradar hacks its way into RTSP videosurveillance cameras

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

OSINT Project

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A bash script that will automatically install a list of bug hunting tools that I find interesting for recon, exploitation, etc. (minus burp) For Ubuntu/Debain.

bash scripting thing !

Pentest: Subdomains enumeration tool for penetration testers.

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.

Related subdomains finder

🎯 XML External Entity (XXE) Injection Payload List

Idiomatic nmap library for go developers

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

🔗 Don't know what type of hash it is? Name That Hash will name that hash type! 🤖 Identify MD5, SHA256 and 3000+ other hashes ☄ Comes with a neat web app 🔥

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Let's find someone's account

Making Favicon.ico based Recon Great again !

A collection of awesome one-liner scripts especially for bug bounty tips.

An ongoing list of virtual cybersecurity conferences.

🔥 Modern command line tool for malware creation on Windows

A list of resources for those interested in getting started in bug bounties

🏴‍☠️ Information Gathering tool 🏴‍☠️ DNS / Subdomains / Ports / Directories enumeration

Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.

🔎Searches Hash APIs to crack your hash quickly🔎 If hash is not found, automatically pipes into HashCat⚡

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

yotter - bash script that performs recon and then uses dirb to discover directories that might lead to information leakage

📡 A python program to create a fake AP and sniff data.

A collection of various awesome lists for hackers, pentesters and security researchers

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Tool for automating customized attacks against web applications. Fully made in C language with pthreads, it has fast performance.

Reconnaissance tool for GitHub code search. Finds exposed API keys using pattern matching, commit history searching, and a unique result scoring system.

Damn Vulnerable Web Application (DVWA)

🔎 Most Advanced Open Source Intelligence (OSINT) Framework for scanning IP Address, Emails, Websites, Organizations.

ReconPi - A lightweight recon tool that performs extensive scanning with the latest tools.

my oscp prep collection

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

Gorsair hacks its way into remote docker containers that expose their APIs

Semi-automatic OSINT framework and package manager

Email recon made fast and easy, with a framework to build on

👥😈 Infect a pc with badusb and establish a connection through telegram.

Automatically brute force all services running on a target.

Operational Security utility and automator.

Collection of quality safety articles. Awesome articles.

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.

📚 Overview 🔒 Tooling 🔒 Process 🔒 Physical 🔒 People 📚

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Micro-framework for rapid development of reusable security tools

This challenge is Inon Shkedy's 31 days API Security Tips.

Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will make a request to these URLs and try to detect changes based on their response's body length.

BruteForce Tool For both Instagram and Facebook

WSSH Is a tool for brute forcing servers that has port 22 open via ssh, wssh is probably the fastest ssh brute forcer available

List of Awesome Asset Discovery Resources

The Swiss Army knife for automated Web Application Testing

Exploitation Framework for Embedded Devices

Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network

Subdomain Takeover tool written in Go

🏴‍☠️ Tools for pentesting, CTFs & wargames. 🏴‍☠️