732 Open source projects that are alternatives of or similar to h1-search

Awesome cloud enumerator

Web path scanner

Credentials Checking Framework

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…

All In One Pentesting Tool For Recon & Auditing , Phone Number Lookup , Header , SSH Scan , SSL/TLS Scan & Much More.

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

all manner of wordlists

bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.

Intelligence tool but without API key

Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.

A collection of some of my scripts

XSS in pastebin.com and reddit.com via unsanitized markdown output

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bulk operations.

Hetty is an HTTP toolkit for security research.

Extract subdomains from SSL certificates in HTTPS sites.

Cameradar hacks its way into RTSP videosurveillance cameras

HTTP Request Smuggling over HTTP/2 Cleartext (h2c)

Multi Tool Subdomain Enumeration

Gorsair hacks its way into remote docker containers that expose their APIs

#legalbugbounty project — creating safe harbors on bug bounty programs and vulnerability disclosure programs. Authored by Amit Elazari.

An OSINT tool to find contacts in order to report security vulnerabilities.

A collection of response templates for invalid bug bounty reports.

RFD Checker - security CLI tool to test Reflected File Download issues

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title

Decode All Bases - Base Scheme Decoder

Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own

A Tool for Domain Flyovers

Misc. Public Reports of Penetration Testing and Security Audits.

Operational Security utility and automator.

Feature-rich Post Exploitation Framework with Network Pivoting capabilities.

A list of interesting payloads, tips and tricks for bug bounty hunters.

🎯 XML External Entity (XXE) Injection Payload List

🔐 Docker Container for Penetration Testing & Security

The fastest dork scanner written in Go.

Idiomatic nmap library for go developers

Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.

sub domain wild card filtering tool

A permutation generation tool written in golang

evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

"Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.

Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.

The Swiss Army knife for automated Web Application Testing

This challenge is Inon Shkedy's 31 days API Security Tips.

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

A big list of Android Hackerone disclosed reports and other resources.

Secret and/ credential patterns used for gf.

Scan for open AWS S3 buckets and dump the contents

A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.

Subdomain Takeover tool written in Go

Auto setup is a bash script compatible with Debian based distributions to install and setup necessary programs.

🌒 Shell command obfuscation to avoid detection systems

Subcert is an subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings, using Text-Based Steganography; Evade DLP/MLS Devices, Defeat Data Whitelisting Controls, Social Engineering of Analysts, Evade AV Detection

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️