1033 Open source projects that are alternatives of or similar to Gorsair

Idiomatic nmap library for go developers

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

Cameradar hacks its way into RTSP videosurveillance cameras

🔐 Docker Container for Penetration Testing & Security

A list to discover work of red team tooling and methodology for penetration testing and security assessment

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

A wrapper for Nmap to quickly run network scans

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Dradis Framework: Colllaboration and reporting for IT Security teams

Web path scanner

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A Python tool used to automate the execution of the following tools : Nmap , Nikto and Dirsearch but also to automate the report generation during a Web Penetration Testing

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Hawkeye filesystem analysis tool

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Port scanning and domain utility.

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Hack the World using Termux

Selenium powered Python script to automate searching for vulnerable web apps.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

A pentesting tool inspired by mr robot and derived by zphisher

Extract subdomains from SSL certificates in HTTPS sites.

Ruby on Rails Phishing Framework

Command line tool that allows you to explore IoT devices by using Shodan API.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Awesome cloud enumerator

A tool to automate penetration tests

Python based backdoor that uses Gmail to exfiltrate data through attachment. This RAT will help during red team engagements to backdoor any Windows machines. It tracks the user activity using screen capture and sends it to an attacker as an e-mail attachment.

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

A distributed nmap / masscan scanning framework complete with an API client for automation workflows

Hetty is an HTTP toolkit for security research.

OSINT

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

Scan .onion hidden services with nmap using Tor, proxychains and dnsmasq in a minimal alpine Docker container.

List of every possible vulnerabilities in computer security.

Next generation web scanner

A curated list of awesome infosec courses and training resources.

network reconnaissance toolkit

A web front-end for password cracking and analytics

Security Manage Framwork is a security management platform for enterprise intranet, which includes asset management, vulnerability management, account management, knowledge base management, security scanning automation function modules, and can be used for internal security management. This platform is designed to help Party A with fewer security personnel, complicated business lines, difficult periodic inspection and low automation to better achieve internal safety management.

hydra

An advanced tool for email reconnaissance

Hacking Toolkit

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Sifter aims to be a fully loaded Op Centre for Pentesters

OSINT Tool: Generate username lists for companies on LinkedIn

🤖 The Modern Port Scanner 🤖

Steganography brute-force utility to uncover hidden data inside files

Extract endpoints from APK files

Pentest Report Generator

Fast web fuzzer written in Go