1033 Open source projects that are alternatives of or similar to Gorsair

Easy files and payloads delivery over DNS

Advanced Web Shell

DotDotPwn - The Directory Traversal Fuzzer

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

DNS Rebinding Exploitation Framework

A MongoDB importer and API for Project Sonars DNS datasets

Audit your public Google Drive files.

A list of web application security

Modular personalized dictionary generator.

Vanquish is Kali Linux based Enumeration Orchestrator. Vanquish leverages the opensource enumeration tools on Kali to perform multiple active information gathering phases.

Payload Arsenal for Pentration Tester and Bug Bounty Hunters

Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security professionals & bug-hunters

Hacking, pen-testing, and cyber-security related tools built with Python.

Handbook of information collection for penetration testing and src

The fastest dork scanner written in Go.

AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities

A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.

DeimosC2 is a Golang command and control framework for post-exploitation.

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Nmap and NSE command line wrapper in the style of Metasploit

Advanced Graphical User Interface for NMap

Hershell is a simple TCP reverse shell written in Go.

A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.

A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)

Wi-Fi tools keep getting more and more accessible to beginners, and the Ehtools Framework is a framework of serious penetration tools that can be explored easily from within it. This powerful and simple tool can be used for everything from installing new add-ons to grabbing a WPA handshake in a matter of seconds. Plus, it's easy to install, set up, and utilize.

🙃 Reverse Shell Cheat Sheet 🙃

Osintgram is a OSINT tool on Instagram. It offers an interactive shell to perform analysis on Instagram account of any users by its nickname

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.

Statically-linked ssh server with reverse shell functionality for CTFs and such

🌰 An onion url inspector for inspecting deep web links.

ConPtyShell - Fully Interactive Reverse Shell for Windows

Framework designed to automate various wireless networks attacks (the project was presented on Pentester Academy TV's toolbox in 2017).

BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.

VOIP Security Audit Framework

fireELF - Fileless Linux Malware Framework

Quickly analyze and reverse engineer Android packages

A Powershell client for dnscat2, an encrypted DNS command and control tool.

SEC分布式资产扫描系统

Web Pentesting Fuzz 字典,一个就够了。

Network Scanner with Backdoor Detection, other Nmap resources and syn-protection detection

A Nmap XSL implementation with Bootstrap.

Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.

THE ESP8266 HONEYPOT

A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

Hacker101 CTF Writeup

A simple Python script that reads a text file with lots of e-mails and passwords, and tries to check if those credentials are valid by trying to login on IMAP servers.

A collected list of awesome security talks

Little tool made in python to create payloads for Linux, Windows and OSX with unique handler

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

🎯 XML External Entity (XXE) Injection Payload List

Blind WAF identification tool

A bash script for recon and DOS attacks

Open source security auditing tool to search and dump system configuration. It allows you to generate reports in HTML or RAW-HTML formats.

A REST API security testing framework.

tcp connection hijacker, rust rewrite of shijack

A curated list of awesome privilege escalation