1033 Open source projects that are alternatives of or similar to Gorsair

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A tool to test security of json web token

Python Interactive Deepweb-oriented Rapid Intelligent Link Analyzer

Attack Surface Management Platform | Sn1perSecurity LLC

my oscp prep collection

Useful tools and scripts during Penetration Testing engagements

Yet Another PHP Shell - The most complete PHP reverse shell

Steganography brute-force utility to uncover hidden data inside files

Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.

jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints. This could help reveal cross-site script inclusion vulnerabilities or aid in bypassing content security policies.

备考 OSCP 的各种干货资料/渗透测试干货资料

Windows one line commands that make life easier, shortcuts and command line fu.

Container with all the list of useful tools/commands while hacking and pentesting Kubernetes Clusters

OSINT Tool: Generate username lists for companies on LinkedIn

Red Team Toolkit is an Open-Source Django Offensive Web-App which is keeping the useful offensive tools used in the red-teaming together.

A Modular Framework for the Automated Vulnerability Analysis in IP-based Networks

A customizable, easy-to-navigate tool for researching, pen testing, and defending with the power of Shodan.

Port scanning and domain utility.

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

Awesome Nmap Grep

The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.

HostHunter a recon tool for discovering hostnames using OSINT techniques.

This repository contains cutting-edge open-source security tools (OST) for a red teamer and threat hunter.

evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.

An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)

Pentest: Subdomains enumeration tool for penetration testers.

An advanced tool for email reconnaissance

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。

Next generation web scanner

Pentest Report Generator

Collection of several DDos tools.

Totally Insecure Web Application Project (TIWAP)

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

Vulnerability assessment and penetration testing automation and reporting platform for teams.

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

Exploit for Pulse Connect Secure SSL VPN arbitrary file read vulnerability (CVE-2019-11510)

An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.

Simple Keylogger with smtp to send emails on your account using python works on linux and Windows

List of every possible vulnerabilities in computer security.

A Tool for Domain Flyovers

A pentesting tool inspired by mr robot and derived by zphisher

Command line tool that allows you to explore IoT devices by using Shodan API.

A tool to automate penetration tests

Script to spider a website and find publicly open S3 buckets

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

OSINT

Scaling Network Scanning. Changes prior to 1.0 may cause difficult to avoid backwards incompatibilities. You've been warned.

IP Tools To quickly get information about IP Address's, Web Pages and DNS records.

Extract subdomains from SSL certificates in HTTPS sites.

Hetty is an HTTP toolkit for security research.

A curated list of awesome infosec courses and training resources.

Awesome cloud enumerator

WebMap-Nmap Web Dashboard and Reporting

network reconnaissance toolkit

🤖 The Modern Port Scanner 🤖

A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.