700 Open source projects that are alternatives of or similar to goLazagne

Tool Information Gathering Write By Python.

Gives you one-liners that aids in penetration testing operations, privilege escalation and more

👀 🖥️ Golang rewrite of eyes.sh. Let's you perform domain/IP address information gathering. Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?" 🔍 🕵️

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Multi source CVE/exploit parser.

Subdomain enumeration through various techniques

🔐 Lockdoor Framework : A Penetration Testing framework with Cyber Security Resources

Tool that monitors, analyzes and limits the bandwidth of devices on the local network without administrative access.

A tool to test security of json web token

🔐 Docker Container for Penetration Testing & Security

Automated Pentest Tools Designed For Parrot Linux

Kee Vault is a password manager for your web browser. Password databases (Vaults) are encrypted using the KeePass storage format before being sent to a remote server for synchronisation across any modern device/browser

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

Attack Surface Management Platform | Sn1perSecurity LLC

Modular personalized dictionary generator.

hydra

Hacking Toolkit

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords.

A tool to automate penetration tests

🔄 A collection of mitmproxy inline scripts

Pentesting suite for Maltego based on data in a Metasploit database

备考 OSCP 的各种干货资料/渗透测试干货资料

A wrapper for Nmap to quickly run network scans

A OpenSource Clientless & Serverless Password Manager

Password lists with top passwords to optimize bruteforce attacks

The LAZY script will make your life easier, and of course faster.

Vaf is a cross-platform very advanced and fast web fuzzer written in nim

A light-weight password manager with a focus on simplicity and security

It's a Docker Environment for pentesting which having all the required tool for VAPT.

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Yet Another PHP Shell - The most complete PHP reverse shell

Multi OTP Spam Amp/Paralell threads

Fully automated offensive security framework for reconnaissance and vulnerability scanning

A collection of various awesome lists for hackers, pentesters and security researchers

All releases of the security research group (a.k.a. hackers) The Hacker's Choice

JustTryHarder, a cheat sheet which will aid you through the PWK course & the OSCP Exam. (Inspired by PayloadAllTheThings)

Web path scanner

network reconnaissance toolkit

👶 BabySploit Beginner Pentesting Toolkit/Framework Written in Python 🐍

pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python (PSE)

Penetration Testing Platform

Let's you perform domain/IP information gathering... in BASH! Wasn't it esr who said "With enough eyeballs, all your IP info are belong to us?"

unix SSH post-exploitation 1337 tool

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

Penetration test Achieve Knowledge Unite Rapid Interface

A fast web directory/file enumeration tool written in Rust

Tool Information Gathering & social engineering Write By [Python,JS,PHP]

Domain name permutation engine written in Go

Bilingual PhishingKit. TigerShark intergrates a vast array of various phishing tools and frameworks, from C2 servers, backdoors and delivery methods in multiple scripting languages in order to suit whatever your deployment needs may be.

This tool allows to check speculative execution side-channel attacks that affect many modern processors and operating systems designs. CVE-2017-5754 (Meltdown) and CVE-2017-5715 (Spectre) allows unprivileged processes to steal secrets from privileged processes. These attacks present 3 different ways of attacking data protection measures on CPUs enabling attackers to read data they shouldn't be able to. This tool is originally based on Microsoft: https://support.microsoft.com/en-us/help/4073119/protect-against-speculative-execution-side-channel-vulnerabilities-in

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

PowerShell payload generator

Quick SQL Scanner, Dorker, Webshell injector PHP

Docker - Ubuntu with a bunch of PenTesting tools and wordlists

Cheat-Sheet of tools for penetration testing

A HUD-style interface for pass on macOS

A simple, extensible C&C beaconing system.

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

XposedOrNot (XoN) tool is to search an aggregated repository of xposed passwords comprising of ~850 million real time passwords. Usage of such compromised passwords is detrimental to individual account security.

🍜 Parametrized JSON logging library in Golang which lets you obfuscate sensitive data and marshal any kind of content.