1195 Open source projects that are alternatives of or similar to Goat

Audit tool to find common vulnerabilities in PHP source code

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

Adds a customizable "Send to..."-context-menu to your BurpSuite.

A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.

Full Speed Instagram Cracker

红队作战中比较常遇到的一些重点系统漏洞整理。

A secure and decentralized Bitcoin and other cryptocurrency wallet for iPhone. Supports Bitcoin, Ethereum, EOS, Binance Chain, Bitcoin Cash, DASH, ...

s3git: git for Cloud Storage. Distributed Version Control for Data. Create decentralized and versioned repos that scale infinitely to 100s of millions of files. Clone huge PB-scale repos on your local SSD to make changes, commit and push back. Oh yeah, it dedupes too and offers directory versioning.

PyIris-backdoor is a modular, stealthy and flexible remote-access-toolkit written completely in python used to command and control other systems. It is now in the beta stage, possibly perpetually. There are bugs still present in the framework, feel free to contribute or help me out with this project its still under active development >_>

✨ Purpose only! The dangers of Bluetooth Low Energy（BLE）implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.

CTF竞赛权威指南

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, ThreatCrowd, Valhalla, Malware Bazaar, ThreatFox and it is able to scan Android devices against VT and HA.

A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.

A social experiment

nntp based decentralized imageboard

A cryptographically verifiable code review system for the cargo (Rust) package manager.

200 TOOLS BY 0XID4FF0X FOR TERMUX

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

🔑 Open source stealer written on C#, all logs will be sent to Telegram bot.

Official Rust implementation of the Purple Protocol

🐱‍💻 Tiny Tiny Hacks we use in our daily life.

DNS filter-/blocklists | safe. private. clean. browsing!

Repository containting original and decompiled files of TRISIS/TRITON/HATMAN malware

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

ipsets dynamically updated with firehol's update-ipsets.sh script

Private Decentralized Communication Network 🎭 🧅

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

zynix-Fusion is a framework that aims to centralize, standardizeand simplify the use of various security tools for pentest professionals.zynix-Fusion (old name: Linux evil toolkit) has few simple commands, one of which is theinit function that allows you to define a target, and thus use all the toolswithout typing anything else.

An advanced Ethereum mobile wallet

APT || Execution || Launch || APTs || ( Authors harr0ey, bohops )

Sandbox for automated Linux malware analysis.

Message Queue & Broker Injection tool

🔺 Red Team Hardware Toolkit 🔺

Linux enumeration tool for pentesting and CTFs with verbosity levels

An OSINT CLI tool desgined to fast track IP Reputation and Geo-locaton look up for Security Analysts.

facebook hacking toolkit

Browser Exploitation Framework is a Open-source penetration testing tool that focuses on browser-based vulnerabilities .This Python Script does the changes Required to make hooked Linked Accessible Over WAN .So anyone can use this framework and Attack Over WAN without Port Forwarding [NGROK or any Localhost to Webhost Service Required ]

Wolves Among the Sheep

Malware Data Science Reading Diary / Notes

Simple Dll injector loading from memory. Supports PE header and entry point erasure. Written in C99.

Let's find someone's account

Library for storing and replicating hash-linked data over the IPFS network.

Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.

Black Worm Offical Repo

（VLESS+TCP+TLS/VLESS+TCP+XTLS/VLESS+gRPC+TLS/VLESS+WS+TLS/VMess+TCP+TLS/VMess+WS+TLS/Trojan+TCP+TLS/Trojan+gRPC+TLS/Trojan+TCP+XTLS）+伪装站点、八合一共存脚本，支持多内核安装

Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately network traffic and their associated threats. In this project we attempt at solving this problem by presenting two taxonomies

🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)

⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

Automated Use Case Testing

The best Hacking and PenTesting tools installer on the world

An automated e-mail OSINT tool

The blockchain that provides the digital content namespace for the LBRY protocol

🌲 Aimbot powered by real-time object detection with neural networks, GPU accelerated with Nvidia. Optimized for use with CS:GO.

科学上网，ss, ssr, v2ray, trojan, clash, clashr，翻墙机场推荐

Community driven open source accelerator

v2ray\trojan\ss\ssr\ssd订阅转换Clash规则配置，自动更新ACL4SSR路由规则

An ongoing list of virtual cybersecurity conferences.

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

Green-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.

Multi-thread Twitter BruteForcer in Shell Script